Security
Uncovering the Link: Cryptocurrency Theft and the 2022 LastPass Breach
Cryptocurrency Thefts Linked to LastPass Breach
Recent investigations by blockchain firm TRM Labs have revealed a troubling connection between ongoing cryptocurrency thefts and the 2022 LastPass breach. Attackers have been draining wallets long after encrypted vaults were stolen, using Russian exchanges to launder the stolen crypto.
The breach at LastPass occurred when attackers compromised a developer environment, gaining access to the company’s source code and technical information. This breach was later compounded by a security incident at cloud storage firm GoTo, where hackers used stolen credentials to access LastPass database backups containing encrypted password vaults.
Although the vaults were encrypted, users with weak or reused master passwords were at risk of offline cracking, which has been ongoing since the initial breach. LastPass advised users to reset their master passwords to enhance security.
The U.S. Secret Service confirmed the link between the LastPass breaches and crypto thefts, seizing over $23 million in cryptocurrency. The attackers obtained victims’ private keys by decrypting vault data stolen in the breach, indicating a sophisticated operation.
TRM Report on Cryptocurrency Thefts
TRM Labs’ report highlighted how cryptocurrency theft attacks were traced back to the abuse of stolen LastPass password vaults. Instead of immediate wallet draining, the thefts occurred in waves over time as attackers gradually decrypted vaults.
The stolen funds were laundered through Russian exchanges, with attackers converting crypto to Bitcoin and using techniques like CoinJoin to obfuscate transactions. TRM’s investigation was able to trace the stolen funds, even after they were mixed, using proprietary demixing techniques.
“TRM’s analysis revealed a coordinated campaign behind the thefts, with clusters of transactions pointing to a Russia-based operation. By matching Wasabi deposits with withdrawal patterns, TRM identified the threat actors responsible for the crypto thefts.”
By treating the thefts as a coordinated effort, TRM estimated that over $28 million in cryptocurrency was stolen and laundered through Wasabi Wallet in late 2024 and early 2025. Additional funds were linked to a later wave of attacks in September 2025.
The stolen funds were consistently cashed out through Russian-linked exchanges, indicating the involvement of the same threat actors in multiple breaches. TRM’s thorough investigation shed light on the complex web of crypto theft and money laundering activities.
Discover how top CISOs are planning, spending, and prioritizing for the year ahead. Benchmark strategies, identify trends, and compare priorities in this comprehensive report.
Turn investment into measurable impact with insights from security leaders.
Fuel Prices Slashed in Australia: GST Deal Leads to Discounts at the Pump
if smartphone commercials were honest.
Unprotected: The Vulnerability of Over 14,000 F5 BIG-IP APM Instances to Remote Code Execution Attacks
Garry’s Mod 2: The Evolution of Creativity
Exploring the Benefits and Drawbacks of Android Desktop Mode: A Comprehensive Review
The Future of Sales: Essential Strategies for Competitive Teams in 2026
Avatar: The Last Airbender Season 2: Exciting Updates on Cast and Release Date
Exploring the Latest Apple Music Features: Playlist Playground and Beyond
The Electrifying Transformation of BMW’s Munich Plant: A $700M Journey to All-Electric Production by 2027
EU Takes Action Against Instagram and Facebook for Violating Illegal Content Rules
Warning: Facebook Creators Face Monetization Loss for Stealing and Reposting Videos
Facebook Compliance: ICE-tracking Page Removed After US Government Intervention
Facebook’s New Look: A Blend of Instagram’s Style
Facebook and Instagram to Reduce Personalized Ads for European Users
InstaDub: Meta’s AI Translation Tool for Instagram Videos
Reclaim Your Account: Facebook and Instagram Launch New Hub for Account Recovery
Meta discontinues Messenger apps for Windows and macOS
Breaking Updates: Meta Connect 2025 Unveils Latest Developments
if smartphone commercials were honest.
iPhone 12 – What were Apple thinking?
OnePlus 8T vs Google Pixel 5 – The Brutal Truth.
iPhone 12 / 12 Pro Unboxing – ft MKBHD!
iPhone 12 Pro vs iPhone 12 vs iPhone 11 Pro Camera Test Comparison.
Huawei Mate 40 Pro Unboxing – WHAT.
iPhone 12 vs iPhone 12 Pro / 11 Pro Max / 11 Pro / 11 / XR / SE Battery Life DRAIN Test.
19 Smartphone Gadgets that Blew me Away.
iPhone 12 Pro Max Unboxing & Review!
-
Facebook5 months agoEU Takes Action Against Instagram and Facebook for Violating Illegal Content Rules
-
Facebook6 months agoWarning: Facebook Creators Face Monetization Loss for Stealing and Reposting Videos
-
Facebook6 months agoFacebook Compliance: ICE-tracking Page Removed After US Government Intervention
-
Facebook4 months agoFacebook’s New Look: A Blend of Instagram’s Style
-
Facebook4 months agoFacebook and Instagram to Reduce Personalized Ads for European Users
-
Facebook6 months agoInstaDub: Meta’s AI Translation Tool for Instagram Videos
-
Facebook4 months agoReclaim Your Account: Facebook and Instagram Launch New Hub for Account Recovery
-
Apple5 months agoMeta discontinues Messenger apps for Windows and macOS
