web analytics

Using Hacked LastPass Keys to Steal Cryptocurrency – Source: www.schneier.com

Rate this post

Source: www.schneier.com – Author: Bruce Schneier

Remember last November, when hackers broke into the network for LastPass—a password database—and stole password vaults with both encrypted and plaintext data for over 25 million users?

Well, they’re now using that data break into crypto wallets and drain them: $35 million and counting, all going into a single wallet.

That’s a really profitable hack. (It’s also bad opsec. The hackers need to move and launder all that money quickly.)

Look, I know that online password databases are more convenient. But they’re also risky. This is why my Password Safe is local only. (I know this sounds like a commercial, but Password Safe is not a commercial product.)

Tags: , , ,

Posted on September 18, 2023 at 7:02 AM
13 Comments

Sidebar photo of Bruce Schneier by Joe MacInnis.

Original Post URL: https://www.schneier.com/blog/archives/2023/09/using-hacked-lastpass-keys-to-steal-cryptocurrency.html

Category & Tags: Uncategorized,cryptocurrency,operational security,Password Safe,passwords – Uncategorized,cryptocurrency,operational security,Password Safe,passwords

Views: 0

LinkedIn
Twitter
Facebook
WhatsApp
Email

advisor pick´S post