Hackers Drain Millions in Crypto Using Stolen LastPass Vaults

Blockchain investigator ZachXBT shared on December 17 that the stolen funds were converted to Ethereum ETH $1,865.21 and then moved across instant exchanges to hide their tracks.

He also provided evidence of the attack on Chainabuse, a platform for reporting scams.

Did you know?

Want to get smarter & wealthier with crypto?

Subscribe - We publish new crypto explainer videos every week!

Where to Trade Crypto: 3 Best Approaches Explained (Animated)

SUBSCRIBE

ON YOUTUBE

The security group Security Alliance (SEAL) warned in a December 16 post on X that any passwords or seed phrases stored in LastPass before 2023 remain at risk.

SEAL urged affected users to transfer their assets immediately, saying, "Move your assets before hackers move them for you”.

This incident relates to a major LastPass data breach in December 2022. During the breach, hackers accessed a backup of customer vault data stored in secured storage.

By September 2023, reports showed losses of over $35 million in cryptocurrency. Adding the recent $5.36 million theft and another $4.4 million incident on October 25, the total losses now approach $45 million.

Unfortunately, the LastPass breach is not the only recent incident in crypto security. On December 13, a Ledger wallet user lost 10 Bitcoin BTC $78,742.38 , valued at approximately $1 million, and $1.5 million in NFTs due to a phishing attack. How did the hacker pull it off? Read the full story.