LastPass hackers have claimed to have stolen $5 million in two days this month. The fallout from this incident appears to be ongoing, as a new investigation has uncovered $5 million in cryptocurrency theft from LastPass users on December 16 and 17. A blockchain crypto investigator, known as ZachXBT, has stated that $5.36 million was stolen from over 40 victims via a Telegram post.
According to ZachXBT, the stolen funds were converted to Ethereum (ETH) and then transferred to various instant exchanges before being further converted to Bitcoin. ZachXBT has urgently advised crypto users: “If you believe you may have ever stored your seed phrase or keys in LastPass, migrate your crypto assets immediately.”
A year has passed since initial claims surfaced linking certain cryptocurrency thefts to the 2022 LastPass security incidents. LastPass’ Chief Secure Technology Officer, Christofer Hoff, responded: “To date, LastPass has investigated these claims and is not aware of any conclusive evidence directly connecting these crypto thefts to LastPass.
Investigation links hack and crypto theft
We take any claims regarding the security of LastPass and our customers seriously and invite any security researchers with evidence to contact the LastPass Threat Intelligence team.”
The 2022 data breach involved the development servers and was facilitated by a compromise of a LastPass developer account. Initially, LastPass CEO Karim Toubba stated that only “portions of source code and some proprietary LastPass technical information” were accessed.
However, after four months of investigation, Toubba confirmed that the hacker managed to “access and decrypt some storage volumes” from a third-party cloud-based storage service, which included backups of customer vault data. While LastPass’ Zero Knowledge architecture meant that sensitive vault data, including site passwords, remained safely encrypted, Toubba advised users with weak master passwords to minimize risk by changing passwords of stored websites. This advice now appears to have been crucial for LastPass users.
As the investigation continues, users are urged to take necessary precautions to safeguard their digital assets.
