Hackers stole $4.4 million in crypto from LastPass data breach victims

[Jan]

Hackers stole R83 million in crypto from LastPass data breach victims

Malicious actors stole $4.4 million (R83 million) worth of crypto from victims of the LastPass data breach in 2022, according to a Tweet from ZachXBT on X.

He warned that anyone who believes they have stored their seed phrase or key should migrate their crypto assets immediately.

 

[Sapphiron]

The writing for Lastpass security was on the wall when Logmein bought them

 

[rvZA]

Anywhere you leave your passwords outside your head, you are at risk of getting hacked. There is no such thing as secure services. You are just making things easier for others to gain access to your security codes.

 

[Grieta Thanburg]

Anywhere you leave your passwords outside your head, you are at risk of getting hacked. There is no such thing as secure services. You are just making things easier for others to gain access to your security codes.

I keep it easy. Use a combination of my name and birthdate and then use that password for everything except the bank

 

[backstreetboy]

Amazing how the hacker knew that 25 accounts had so much crypto.

 

[Sapphiron]

Anywhere you leave your passwords outside your head, you are at risk of getting hacked. There is no such thing as secure services. You are just making things easier for others to gain access to your security codes.

Not strictly true.

Services can be setup with zero knowledge decryption, which means that if the service gets breached, the data is encrypted.

The issues come in when they introduce "easy of use", or "backend utilities" features that compromise it.