Since 2022, victims of the LastPass breach have suffered losses exceeding $35 million in stolen crypto, with a recent hack contributing to this total. Approximately 25 individuals reported a combined loss of $4.4 million across 80 compromised wallets resulting from a 2022 data breach related to LastPass. Most victims were long-time LastPass users who stored their #crypto wallet keys in the platform.
In December 2022, LastPass disclosed that an attacker used previously stolen information to target an employee, gaining access to customer data and encrypted vault backups. LastPass cautioned that the attacker could potentially decrypt the data with a brute force attempt on the master password.