Techly NewsGet the app

Get the latest tech news

Feds Link Cyberheist to 2022 LastPass Hacks


In September 2023, KrebsOnSecurity published findings from security researchers who concluded that a series of six-figure cyberheists across dozens of victims resulted from thieves cracking master passwords stolen from the password manager service LastPass in 2022. In a court filing…

Bax and Monahan found another common theme with these robberies: They all followed a similar pattern of cashing out, rapidly moving stolen funds to a dizzying number of drop accounts scattered across various cryptocurrency exchanges. “The scale of a theft and rapid dissipation of funds would have required the efforts of multiple malicious actors, and was consistent with the online password manager breaches and attack on other victims whose cryptocurrency was stolen,” the government wrote. Over the years, LastPass forced new users to pick longer and more complex master passwords, and they increased the number of iterations on multiple occasions by several orders of magnitude.

Get the Android app

Or read this on Hacker News

Read more on:

Photo of Feds

Feds

Photo of lastpass hacks

lastpass hacks

Photo of cyberheist

cyberheist

Related news:

News photo

Feds Arrest Man For Sharing DVD Rip of Spider-Man Movie With Millions Online

News photo

Feds fine Tesla nearly $50K after worker’s death at Austin gigafactory

News photo

Feds: Army soldier accused of AT&T heist Googled ‘can hacking be treason,’ ‘defecting to Russia’

« Superintelligence startup Reflection AI launches with $130M in funding
Signal President Calls Out Agentic AI As Having 'Profound' Security and Privacy Issues »