Fun

Lastpass Data Breach Frightens Users, Some Say Hack ‘May Be Worse Than They Are Letting on’

News Feed - 2022-12-25 07:12:05

Lastpass Data Breach Frightens Users, Some Say Hack ‘May Be Worse Than They Are Letting on’


People involved in financial tech, software programming, cyber security, and cryptocurrencies have been talking about the Lastpass data breach that was disclosed two days ago. The password management company detailed that a breach, committed earlier this year, allowed hackers to obtain a “backup of customer vault data.” Lastpass Reveals ‘Threat Actor Was Also Able to Copy a Backup of Customer Vault Data’


On Dec. 22, 2022, the password management firm Lastpass disclosed that an “unknown threat actor” managed to breach the firm’s cloud-based storage environment in or around Aug. 2022. As soon as the news was published, the Lastpass data leak has been a topical discussion on social media and forums. A great number of people believe that Lastpass’ situation “may be worse than they are letting on.” LastPass attackers now know all websites you have passwords stored for and the blobs, encrypted only by your master password https://t.co/Wdbt6mWe8C https://t.co/HldcJ8DYkK


— SwiftOnSecurity (@SwiftOnSecurity) December 22, 2022



“Based on our investigation to date, we have learned that an unknown threat actor accessed a cloud-based storage environment leveraging information obtained from the incident we previously disclosed in August of 2022,” Lastpass disclosed. The password management company added: The threat actor was also able to copy a backup of customer vault data from the encrypted storage container which is stored in a proprietary binary format that contains both unencrypted data, such as website URLs, as well as fully-encrypted sensitive fields such as website usernames and passwords, secure notes, and form-filled data.


Lastpass insists the encrypted fields are secure with 256-bit AES encryption and the info can only be decrypted by leveraging each user’s master password using the firm’s zero-knowledge architecture. “As a reminder, the master password is never known to Lastpass and is not stored or maintained by Lastpass,” the company detailed. lastpass gets hacked and immediately after a ton of crypto wallets are broken into and drained


“be your own bank”


nah go break into a brick & mortar establishment if you want my funds nerds, good luck


— gainzy (@gainzy222) December 24, 2022


Lastpass’ Security Reassurance Doesn’t Seem to Convince a Number of Critics


However, a number of reports believe that the situation is worse than Lastpass is letting on. Reviewgeek.com’s Andrew Heinzman stresses in his report to “please, stop using Lastpass.” “Even if you use a strong master password, there’s a chance that hackers will try to phish some information out of you,” Heinzman wrote. The author added: To be clear, Lastpass is still investigating this data breach. And after four months of ‘sorry, it’s worse than we thought,’ customers are rightfully worried that Lastpass doesn’t have all the details. For all we know, things could get even worse. We asked our readers to stop using Lastpass in July 2020.


Crypto supporter Udi Wertheimer also warned people that if they use Lastpass “attackers probably have a copy of your vault.” Wertheimer’s recommendation is the same as Heinzman’s as the digital currency proponent insisted that users should “stop using Lastpass.”


“We don’t know how bad things are,” Wertheimer added. “It’s possible that attackers have ongoing access, so don’t just change your passwords and put them back into Lastpass.” Moreover, a Twitter user who claims to have worked as an engineer for the company seven years ago also noted that Lastpass’ breach situation is a big deal.


“I worked at Lastpass as an engineer a long time ago. 7+ years ago. My 2 cents on the situation,” the individual said. “This is the worst breach Lastpass has had. By a lot. The key difference is that customer vaults were accessed this time, which are kept in a completely separate database.” Tags in this story 256-bit AES encryption, Andrew Heinzman, Crypto, Digital Assets, encrypted fields, former engineer, Lastpass, Lastpass data breach, password management firm, Passwords, Reviewgeek.com, secret passwords, Security, Seeds, Udi Wertheimer, zero-knowledge architecture


What do you think about the Lastpass data breach and the speculation that it is worse than Lastpass is letting on? Let us know what you think about this subject in the comments section below. Jamie Redman


Jamie Redman is the News Lead at Bitcoin.com News and a financial tech journalist living in Florida. Redman has been an active member of the cryptocurrency community since 2011. He has a passion for Bitcoin, open-source code, and decentralized applications. Since September 2015, Redman has written more than 6,000 articles for Bitcoin.com News about the disruptive protocols emerging today. North Korean Lazarus Group Linked to New Cryptocurrency Hacking Scheme SECURITY | Dec 5, 2022 Hackers Are Taking Advantage of Typing Mistakes to Steal Cryptocurrency SECURITY | Oct 25, 2022


Image Credits: Shutterstock, Pixabay, Wiki Commons Previous articleCrypto Community Asks: Where in the World Is Ex-Alameda CEO Sam Trabucco? Disclaimer: This article is for informational purposes only. It is not a direct offer or solicitation of an offer to buy or sell, or a recommendation or endorsement of any products, services, or companies. Bitcoin.com does not provide investment, tax, legal, or accounting advice. Neither the company nor the author is responsible, directly or indirectly, for any damage or loss caused or alleged to be caused by or in connection with the use of or reliance on any content, goods or services mentioned in this article. Read disclaimerShow comments More Popular NewsIn Case You Missed ItFidelity Investments Launches Crypto, Metaverse ETFs — Says "We Continue to See Demand"


Fidelity Investments, one of the largest financial services firms with more than $11 trillion under administration, is launching exchange-traded funds (ETFs) focusing on the crypto ecosystem and the metaverse. "We continue to see demand, particularly from young investors, for access ... read more.Privacy-Centric Monero Plans for July Hard Fork, Plans Include Ring Signature, Bulletproof Upgrade Australia to List Bitcoin ETF After 4 Clearinghouse Participants Commit to Meet Stringent Margin Terms Fed"s Bullard Wants to Raise Bank Rate to 3.5% by Year"s End, Hints at 75 Basis Point Rate Hike Iran to Increase Penalties for Unauthorized Cryptocurrency Mining

News Feed
Digital Euro to Handle ‘Almost Unlimited’ Payments, Estonian Central Bank Says After Test
Digital Euro to Handle ‘Almost Unlimited’ Payments, Estonian Central Bank Says After Test A blockchain-based digital euro would be highly scalable allowing i
2021-07-28 21:00 PM
Former US President Donald Trump Launches Second NFT Card Collection
Former US President Donald Trump Launches Second NFT Card Collection On April 18, former U.S. president Donald Trump announced a second series of his digital Trump card collection,
2023-04-19 06:30 AM
Former FTX CEO Sam Bankman-Fried Faces New Bribery Charges for Alleged Crypto Payment to Chinese Officials
Former FTX CEO Sam Bankman-Fried Faces New Bribery Charges for Alleged Crypto Payment to Chinese Officials Sam Bankman-Fried (SBF), the former CEO of FTX, now faces a 13-count indi
2023-03-29 02:30 AM
Estonian court nixes extradition of accused crypto scammers to US
Derek Andersen3 hours agoEstonian court nixes extradition of accused crypto scammers to USIvan Turogin and Sergei Potapenko are suspected in a $575 million fraud case, but they can’t be exposed to U.S. detention condit
2023-11-30 05:20 AM
Zhiyuan Sun8 hours ago99-year-old Hungarian artist’s computer-generated NFTs sold for $1.2MVera Molnár pioneered the use of computer-generated art in the latter half of the 20th century.1146 Total views68 Total shares
2023-07-28 00:14 AM
Bitcoin Dominance Has Remained Under 40% for More Than 3 Consecutive Months
Bitcoin Dominance Has Remained Under 40% for More Than 3 Consecutive Months Over the last 100 days or roughly three months, bitcoin’s market dominance among 21,958 different
2022-12-08 00:00 AM
Kenyan Activists Say Cryptocurrencies Have the ‘Potential to Create New Ways for Young People to Earn’
Kenyan Activists Say Cryptocurrencies Have the ‘Potential to Create New Ways for Young People to Earn’ According to some Kenya-based activists, raising funds through cryptocurr
2022-07-24 16:30 PM
Gold Bull Jeffrey Gundlach Says ‘BTC Maybe the Stimulus Asset’ Ahead of the Precious Metal
Gold Bull Jeffrey Gundlach Says "BTC Maybe the Stimulus Asset" Ahead of the Precious Metal Renowned gold bull and CEO of investment management firm Doubleline, J
2021-02-22 03:00 AM
Tristan Greene5 hours agoMeta launches community-licensed AI coding tool to the publicCode Llama is available for both personal and business use under the Llama2 community license agreement.806 Total views3 Total sharesL
2023-08-25 03:39 AM
Price analysis 8/9: BTC, ETH, BNB, SOL, XRP, DOGE, TON, ADA, AVAX, SHIB
Rakesh Upadhyay7 hours agoPrice analysis 8/9: BTC, ETH, BNB, SOL, XRP, DOGE, TON, ADA, AVAX, SHIBBuyers are struggling to build upon Bitcoin’s sharp recovery on Aug. 8, indicating that the bears remain active at higher
2024-08-10 01:27 AM
State-backed Crypto Mining Farm under Construction in Russia’s Buryatia
State-backed Crypto Mining Farm under Construction in Russia’s Buryatia A new crypto mining facility is being built in the Russian Republic of Buryatia with support from a govern
2023-02-11 14:30 PM
Solana (SOL) tops $150 amid Pantera Capital bid, surge in memecoin and DApp activity
Marcel Pechman3 hours agoSolana (SOL) tops $150 amid Pantera Capital bid, surge in memecoin and DApp activityA handful of new developments back Solana’s swift rally to $150, but are any of them sustainable?2388 Total v
2024-03-08 05:11 AM