LastPass 2022 breach enables years of cryptocurrency thefts

English

A 2022 data breach at password manager LastPass has resulted in prolonged cryptocurrency thefts, according to blockchain intelligence firm TRM Labs. The incident involved stolen user vaults that facilitated around $35 million in losses extending into 2025.

The 2022 breach at LastPass, a popular password management service, compromised user vaults containing sensitive information. This data was exploited by cybercriminals, leading to a series of cryptocurrency thefts that persisted for years. Blockchain analysis company TRM Labs has determined that these stolen credentials enabled approximately $35 million in crypto-related losses, with activities continuing through 2025.

TRM Labs' investigation highlights how the breach provided attackers with access to cryptocurrency wallets and exchange accounts. The firm's findings underscore the long-term risks of data breaches in the cybersecurity landscape, where initial compromises can fuel extended criminal operations. No specific details on the number of affected victims or the exact methods of theft were disclosed in the report.

This case serves as a reminder of the vulnerabilities in password storage solutions and the importance of robust security measures in the digital asset space. As cryptocurrency adoption grows, such incidents emphasize the need for ongoing vigilance against credential-based attacks.

Related Articles

Illustration of North Korean hackers in a cyber command center stealing a record $2 billion in cryptocurrency from global exchanges like Bybit.
Image generated by AI

North Korea steals record $2 billion in cryptocurrency in 2025

Reported by AI Image generated by AI

North Korean hackers stole a record $2.02 billion in cryptocurrency in 2025, according to a new Chainalysis report, surpassing the previous year's haul by 51 percent and bringing their total to $6.75 billion. The thefts, which accounted for 60 percent of the global total of $3.4 billion stolen, were driven by fewer but larger attacks, including a $1.5 billion breach of the Dubai-based Bybit exchange in February. Experts attribute the success to sophisticated tactics like embedding IT workers in crypto firms and impersonating recruiters.

Russian Networks Linked to Laundering of LastPass Breach's $35M in Stolen Crypto

Following the 2022 LastPass data breach, blockchain firm TRM Labs has tied over $35 million in stolen cryptocurrency to Russian cybercriminals, detailing sophisticated laundering via mixers and exchanges persisting into late 2025.

Crypto investor loses $282 million in Trezor wallet scam

Reported by AI

A cryptocurrency investor lost over $282 million in Bitcoin and Litecoin after scammers impersonated Trezor support to steal a recovery seed phrase. The theft, revealed on January 16, 2026, by investigator ZachXBT, involved 1,459 Bitcoin and 2.05 million Litecoin stolen on January 10. The attacker laundered funds through Thorchain and converted them to Monero, causing the privacy coin's price to surge 36%.

Crypto

Chainalysis 2026 Report: $17 Billion in 2025 Crypto Scams Amid Surging AI Fraud and Hacks

Crypto

Trust Wallet confirms second Shai-Hulud supply-chain attack

Technology

Data breach exposes credit card details of over 5.6 million people

Wrench attacks on crypto holders rise in frequency and violence

Physical assaults known as wrench attacks against cryptocurrency holders are increasing in number and severity, according to recent analyses. These incidents correlate with fluctuations in crypto market values, prompting calls for enhanced personal security measures. While overall risks to individual holders may be decreasing, the trend highlights vulnerabilities in self-custody practices.

Attackers hijack Linux Snap Store apps to steal crypto phrases

Reported by AI

Cybercriminals have compromised trusted Linux applications on the Snap Store by seizing expired domains, allowing them to push malware that steals cryptocurrency recovery phrases. Security experts from SlowMist and Ubuntu contributor Alan Pope highlighted the attack, which targets established publisher accounts to distribute malicious updates impersonating popular wallets. Canonical has removed the affected snaps, but calls for stronger safeguards persist.

Coupang data breach spanned June to November

A massive data breach at e-commerce giant Coupang exposed personal information of 33.7 million customers from June 24 to November 8. Officials revealed the attacker exploited the company's electronic signature key, prompting a thorough government investigation. The incident has heightened public concerns over South Korea's data protection capabilities.

Lincoln sees fewer crypto scam reports but higher losses in 2025

Reported by AI

The Lincoln Police Department reported a slight decline in cryptocurrency scam cases last year, yet victims suffered greater financial damage overall. Reports dropped from 133 in 2024 to 127 in 2025, but total losses rose to $4.4 million from $3.1 million. Average losses per victim reached nearly $35,000.

January 23, 2026 10:04

Hackers extort French crypto firm Waltio after stealing user data

January 23, 2026 02:03

Huge data leak exposes 149 million credentials without protection

January 08, 2026 14:30

Chainalysis 2026 Crypto Crime Report: $154 Billion Surge in 2025 Illicit Crypto Volumes

January 08, 2026 01:31

Wrench Attacks on Crypto Holders: Experts Predict 2026 Surge

January 01, 2026 18:36

Losses from crypto hacks drop 60% in December

December 26, 2025 23:28

Former Coinbase agent arrested in India over data breach

December 24, 2025 06:19

Crypto heists reach record $2.7 billion in 2025

December 21, 2025 13:19

Crypto investors endure treacherous market as 2025 ends

December 20, 2025 05:05

Hackers steal millions of Pornhub users' data for extortion

December 10, 2025 08:16

Crypto's new rich seek privacy amid extortion threats

 

 

 

This website uses cookies

We use cookies for analytics to improve our site. Read our privacy policy for more information.
Decline