$53K In Bitcoin Stolen Due to LastPass Data Breach
A class action lawsuit was filed with the United States district court of Massachusetts against password manager LastPass. Due to the data breach, $53K in Bitcoin was stolen and the lawsuit was filed on January 3, 2023.
LastPass was popular for providing secure password management services. Using this service, users store their usernames, passwords, and valuable credentials in a secure place called a vault. People trusted LastPass, so no one expects LastPass fails to last with trust.
The way they are supposed to maintain everything in order to ensure security and safety, they may not keep everything up to the standard and show negligence. Otherwise, users would not end up losing their assets and sensitive information.
Hackers took advantage of the situation and hacked LastPass in August 2022. Hackers got their hands on encrypted passwords and sensitive other data. People who use LastPass become victims putting their trust in their services.
When hackers exploit the vulnerability to get data, that can be used in difficult ways. They can sell the data in the market and bad guys can use it to target people to steal their money, assets, and crypto. It can have multiplier effects and everyone is exposed to this terrible situation who uses LastPass.
According to cybersecurity researcher Graham Cluley, due to the LastPass data breach, a lot of information is exposed to hackers including user names, billing addresses, telephone numbers, company names, email addresses, and IP addresses. This is devastating. Sorry to say but there is no way to sugarcoat this.
People want to keep their credentials safe and use them online securely. That's why they use password management services. But if password management services serve like LastPass, people's trust in them will not last any longer. Data breach always bring terrible results. Wish people don't have to go through this in the future.
So what do you think? Please feel free to leave your comments. Thank you for reading this post. That's it for now. I'll be back with another post.
Reference: 1
Any time you put your personal information out there, you are entrusting someone with it of course, and so it becomes a very good idea to make sure whoever it is you are entrusting this important information with can be trusted.
I am not sure enough people do this, and I think there are people who understand full well this truth, and take as much advantage of it as they can.