Experts link LastPass security breach to a string of crypto heists

Posted by
Check your BMI

A cartoon illustration shows a shadowy figure carrying off a red directory folder, which has a surprised-looking face on its side.
One researcher claims the number of victims who stored their crypto keys on LastPass was “simply too much to ignore.” | Illustration: Beatrice Sala
toonsbymoonlight

Security experts are claiming that some of the LastPass password vaults stolen during a security breach near the end of 2022 have now been cracked open following a string of six-figure cryptocurrency heists. Cybersecurity blogger Brian Krebs reports that several researchers have identified a “highly reliable set of clues” that seemingly connect over 150 victims of crypto theft with the LastPass service. Collectively, over $35 million in crypto has reportedly been stolen so far, with between two to five high-value heists occurring each month since December 2022.

Taylor Monahan, lead product manager at crypto wallet company MetaMask and one of the key researchers investigating the attacks, concluded that the common thread connecting the…

Continue reading…