LastPass 2022 breach enables years of cryptocurrency thefts

Svenska

A 2022 data breach at password manager LastPass has resulted in prolonged cryptocurrency thefts, according to blockchain intelligence firm TRM Labs. The incident involved stolen user vaults that facilitated around $35 million in losses extending into 2025.

The 2022 breach at LastPass, a popular password management service, compromised user vaults containing sensitive information. This data was exploited by cybercriminals, leading to a series of cryptocurrency thefts that persisted for years. Blockchain analysis company TRM Labs has determined that these stolen credentials enabled approximately $35 million in crypto-related losses, with activities continuing through 2025.

TRM Labs' investigation highlights how the breach provided attackers with access to cryptocurrency wallets and exchange accounts. The firm's findings underscore the long-term risks of data breaches in the cybersecurity landscape, where initial compromises can fuel extended criminal operations. No specific details on the number of affected victims or the exact methods of theft were disclosed in the report.

This case serves as a reminder of the vulnerabilities in password storage solutions and the importance of robust security measures in the digital asset space. As cryptocurrency adoption grows, such incidents emphasize the need for ongoing vigilance against credential-based attacks.

Relaterade artiklar

Illustration of North Korean hackers in a cyber command center stealing a record $2 billion in cryptocurrency from global exchanges like Bybit.
Bild genererad av AI

North Korea steals record $2 billion in cryptocurrency in 2025

Rapporterad av AI Bild genererad av AI

North Korean hackers stole a record $2.02 billion in cryptocurrency in 2025, according to a new Chainalysis report, surpassing the previous year's haul by 51 percent and bringing their total to $6.75 billion. The thefts, which accounted for 60 percent of the global total of $3.4 billion stolen, were driven by fewer but larger attacks, including a $1.5 billion breach of the Dubai-based Bybit exchange in February. Experts attribute the success to sophisticated tactics like embedding IT workers in crypto firms and impersonating recruiters.

Russian Networks Linked to Laundering of LastPass Breach's $35M in Stolen Crypto

Following the 2022 LastPass data breach, blockchain firm TRM Labs has tied over $35 million in stolen cryptocurrency to Russian cybercriminals, detailing sophisticated laundering via mixers and exchanges persisting into late 2025.

Forskning avslöjar brister i lösenordshanterares nollkunskaps-påståenden

Rapporterad av AI

Ny forskning från ETH Zurich och USI Lugano avslöjar sårbarheter i populära lösenordshanterare, vilket utmanar deras försäkringar om att servrar inte kan komma åt användarnas valv. Studien analyserade Bitwarden, Dashlane och LastPass, och identifierade sätt som angripare med serverkontroll kunde stjäla eller ändra data, särskilt när funktioner som kontonåterställning eller delning är aktiverade. Företagen har börjat patcha problemen samtidigt som de försvarar sina övergripande säkerhetsrutiner.

Teknik

Investeringsplattformen Betterment drabbad av dataintrång

Frankrike

Hackers extort French crypto firm Waltio after stealing user data

Krypto

Chainalysis 2026 Report: $17 Billion in 2025 Crypto Scams Amid Surging AI Fraud and Hacks

Trust Wallet confirms second Shai-Hulud supply-chain attack

Trust Wallet has linked a second Shai-Hulud supply-chain attack to a hack on its Chrome extension, resulting in the theft of about $8.5 million in cryptocurrency. The incident involved a malicious version of the extension that exfiltrated users' sensitive wallet data. The company rolled back the compromised software and committed to reimbursing affected users.

Dataintrång avslöjar kreditkortsuppgifter för över 5,6 miljoner personer

Rapporterad av AI

Ett betydande dataintrång har äventyrat kreditkortsinformationen för mer än 5,6 miljoner individer. Händelsen involverar 700Credit, där data stals via en tredjeparts-API-integration. Detaljer framkom i en nylig rapport om cybersäkerhetshot.

Hackare stjäl data från miljontals Pornhub-användare för utpressning

Hackare har kommit åt och stulit personlig information från miljontals Pornhub-användare i syfte att använda datan för utpressningsscheman. Händelsen belystes i WIRED:s sammanfattning av säkerhetsnyheter.

Scammers target Trezor and Ledger users with fake mail letters

Rapporterad av AI

Threat actors are mailing physical letters impersonating Trezor and Ledger to trick cryptocurrency hardware wallet users into revealing recovery phrases. The letters create urgency by claiming mandatory checks are required to avoid losing wallet access. Victims scanning included QR codes are directed to phishing sites that steal their wallet information.

23 mars 2026 09:31

Forskare upptäcker läckta API-nycklar på nästan 10 000 webbplatser

2 mars 2026 06:16

Sydkoreansk polis förlorar 5 miljoner dollar i beslagtagna kryptovalutor efter läcka av plånboksdetaljer

4 februari 2026 20:07

Påstådd kinesisk dataintrång exponerar 8,7 miljarder poster

23 januari 2026 02:03

Massiv dataläcka exponerar 149 miljoner inloggningsuppgifter utan skydd

21 januari 2026 17:17

Angripare kapar Linux Snap Store-appar för att stjäla kryptovalutafraser

17 januari 2026 01:38

Crypto investor loses $282 million in Trezor wallet scam

8 januari 2026 01:31

Wrench Attacks on Crypto Holders: Experts Predict 2026 Surge

4 januari 2026 12:16

Wrench attacks on crypto holders rise in frequency and violence

1 januari 2026 18:36

Losses from crypto hacks drop 60% in December

24 december 2025 06:19

Crypto heists reach record $2.7 billion in 2025

 

 

 

Denna webbplats använder cookies

Vi använder cookies för analys för att förbättra vår webbplats. Läs vår integritetspolicy för mer information.
Avböj