Cybercriminals stole $5.36 million from around 40 victims who used the password manager LastPass.
Blockchain investigator ZachXBT shared on December 17 that the stolen funds were converted to Ethereum
He also provided evidence of the attack on Chainabuse, a platform for reporting scams.
Did you know?
Subscribe - We publish new crypto explainer videos every week!
What is Crypto Arbitrage? (Risks & Tips Explained With Animation)
The security group Security Alliance (SEAL) warned in a December 16 post on X that any passwords or seed phrases stored in LastPass before 2023 remain at risk.
SEAL urged affected users to transfer their assets immediately, saying, "Move your assets before hackers move them for you”.
This incident relates to a major LastPass data breach in December 2022. During the breach, hackers accessed a backup of customer vault data stored in secured storage.
By September 2023, reports showed losses of over $35 million in cryptocurrency. Adding the recent $5.36 million theft and another $4.4 million incident on October 25, the total losses now approach $45 million.
Unfortunately, the LastPass breach is not the only recent incident in crypto security. On December 13, a Ledger wallet user lost 10 Bitcoin