FlagThis - #lastpass

Bybit, a cryptocurrency exchange, suffered a massive loss of $1.5 billion due to North Korean hackers, marking a record-breaking heist. Investigations revealed the breach stemmed from a compromised account on a free digital storage service, highlighting the vulnerabilities even established crypto platforms face. Law enforcement agencies are now engaged in a cat-and-mouse game to recover the stolen cryptocurrency before it is converted into untraceable currency.

This incident underscores the growing threat of sophisticated cyberattacks targeting the cryptocurrency sector. North Korean hackers, specifically the Lazarus Group, are believed to be responsible for the attack. Concerns remain about the security measures implemented by cryptocurrency exchanges and the need for stronger protocols to safeguard user funds from these types of breaches.


References :

• Thomas Fox-Brewster: Feds Suspect LastPass Hackers Stole $150 Million In Crypto From One Person
• fortune.com: How North Korea cracked Bybit’s crypto safe to steal $1.5 billion in a record heist
• News ? Metro: North Korean hackers cash out £300,000,000 after billion-pound crypto heist
• Virus Bulletin: NCC Group's Mario Rivas, Ruben Santos & Jorge Sanz present a technical analysis of the Bybit hack that led to the largest cryptocurrency theft ever recorded, with more than $1.4 billion assets, including 401,347 ETH, drained from its cold wallet.
• Kaspersky official blog: How to store cryptocurrency after the Bybit hack | Kaspersky official blog

Classification:

• HashTags: #CryptoHack #LastPass #CyberTheft
• Company: Bybit
• Target: CryptoAssets
• Attacker: North Korean Hackers
• Product: CyberSecurity
• Feature: Hack
• Type: Hack
• Severity: Disaster

Federal agents have linked a $150 million cryptocurrency heist to the 2022 LastPass data breach. U.S. authorities have seized over $23 million in cryptocurrency related to the January 2024 theft from a Ripple crypto wallet, with investigators believing hackers who breached LastPass in 2022 were responsible. These findings align with those published by KrebsOnSecurity in September 2023, which highlighted a series of six-figure cyberheists resulting from cracked master passwords stolen from LastPass.

The U.S. Secret Service and FBI investigations support the conclusion that the same attackers behind the LastPass breach used a stolen password from the victim's online password manager to access their cryptocurrency wallet. The stolen XRP, initially valued at $150 million, is now worth $716 million. The Secret Service continues to trace the funds through various exchanges, noting that the scale and rapid dissipation of funds required multiple malicious actors, consistent with the online password manager breaches and attacks on other victims.


References :

• bsky.app: U.S. authorities have seized over $23 million in cryptocurrency linked to the theft of $150 million from a Ripple crypto wallet in January 2024. Investigators believe hackers who breached LastPass in 2022 were behind the attack.
• BrianKrebs: New, by me: Feds Link $150M Cyberheist to 2022 LastPass Hacks In September 2023, KrebsOnSecurity published findings from security researchers who concluded that a series of six-figure cyberheists across dozens of victims resulted from thieves cracking master passwords stolen from the password manager service LastPass in 2022. In a court filing this week, U.S. federal agents investigating a spectacular $150 million cryptocurrency heist said they had reached the same conclusion.
• krebsonsecurity.com: Feds Link $150M Cyberheist to 2022 LastPass Hacks
• The DefendOps Diaries: The Seizure of $23 Million in Cryptocurrency: A Detailed Analysis of the Ripple Wallet Hack Linked to LastPass Breach
• Thomas Fox-Brewster: Feds Suspect LastPass Hackers Stole $150 Million In Crypto From One Person
• securityaffairs.com: Feds seized $23 million in crypto stolen using keys from LastPass breaches
• www.scworld.com: LastPass hack leveraged to facilitate $150M crypto heist

Classification:

• HashTags: #LastPass #CryptoTheft #Cyberheist
• Company: LastPass
• Target: LastPass users
• Attacker: US DOJ
• Product: LastPass
• Feature: Password theft
• Type: DataBreach
• Severity: Major

Federal investigators have linked the 2022 LastPass data breach to a $150 million cryptocurrency theft from a Ripple XRP wallet in January 2024. Authorities believe the hackers exploited stolen master passwords to gain unauthorized access to the wallet. The stolen XRP, initially valued at $150 million, is now worth an estimated $716 million due to fluctuations in the cryptocurrency market.

U.S. law enforcement has seized over $23 million in cryptocurrency connected to the theft. The U.S. Secret Service and FBI are actively investigating the case and working to recover the remaining stolen funds. Security researchers had previously identified a pattern of similar crypto heists linked to the LastPass breach, suggesting a broader impact of the password manager vulnerability. The incident highlights the significant risks associated with compromised password management systems.


References :

• bsky.app: US authorities have seized over $23 million in cryptocurrency linked to the theft of $150 million from a Ripple crypto wallet in January 2024. Investigators believe hackers who breached LastPass in 2022 were behind the attack.
• krebsonsecurity.com: KrebsOnSecurity published findings from security researchers who concluded that a series of six-figure cyberheists across dozens of victims resulted from thieves cracking master passwords stolen from the password manager service LastPass in 2022.
• The DefendOps Diaries: The Seizure of $23 Million in Cryptocurrency: A Detailed Analysis of the Ripple Wallet Hack Linked to LastPass Breach
• Thomas Fox-Brewster: The stolen XRP is now worth $716 million. The Secret Service is trying to claw it back from unknown hackers.
• www.bleepingcomputer.com: U.S. authorities have seized over $23 million in cryptocurrency linked to the theft of $150 million from a Ripple crypto wallet in January 2024. Investigators believe hackers who breached LastPass in 2022 were behind the attack.
• Metacurity: Hack of LastPass in 2022 led to massive theft of XRP, now worth nearly $700 million
• securityaffairs.com: US authorities seized $23M in crypto linked to a $150M Ripple hack, suspected to have been carried out by hackers from the 2022 LastPass breach.
• www.scworld.com: LastPass hack leveraged to facilitate $150M crypto heist

Classification:

• HashTags: #LastPassHack #CryptoTheft #CyberSecurity
• Company: LastPass
• Target: Crypto Wallet Users
• Attacker: LastPass Hackers
• Product: LastPass
• Feature: master password
• Malware: password cracking
• Type: DataBreach
• Severity: Major