$53K In Bitcoin Stolen Due to LastPass Data Breach

4 21
Avatar for rezoanulvibes
Written by
1 year ago
Topics: Finance, Investment, Blockchain, Crypto, Cryptoeducation, ...

A class action lawsuit was filed with the United States district court of Massachusetts against password manager LastPass. Due to the data breach, $53K in Bitcoin was stolen and the lawsuit was filed on January 3, 2023.

LastPass was popular for providing secure password management services. Using this service, users store their usernames, passwords, and valuable credentials in a secure place called a vault. People trusted LastPass, so no one expects LastPass fails to last with trust.

The way they are supposed to maintain everything in order to ensure security and safety, they may not keep everything up to the standard and show negligence. Otherwise, users would not end up losing their assets and sensitive information.

Hackers took advantage of the situation and hacked LastPass in August 2022. Hackers got their hands on encrypted passwords and sensitive other data. People who use LastPass become victims putting their trust in their services.

When hackers exploit the vulnerability to get data, that can be used in difficult ways. They can sell the data in the market and bad guys can use it to target people to steal their money, assets, and crypto. It can have multiplier effects and everyone is exposed to this terrible situation who uses LastPass.

According to cybersecurity researcher Graham Cluley, due to the LastPass data breach, a lot of information is exposed to hackers including user names, billing addresses, telephone numbers, company names, email addresses, and IP addresses. This is devastating. Sorry to say but there is no way to sugarcoat this.

People want to keep their credentials safe and use them online securely. That's why they use password management services. But if password management services serve like LastPass, people's trust in them will not last any longer. Data breach always bring terrible results. Wish people don't have to go through this in the future.

So what do you think? Please feel free to leave your comments. Thank you for reading this post. That's it for now. I'll be back with another post.

Image Sources: 1 and 2

Reference: 1

4
$ 0.30
$ 0.20 from @Coolmidwestguy
$ 0.05 from @Porwest
$ 0.05 from @Unity
Avatar for rezoanulvibes
Written by
1 year ago
Topics: Finance, Investment, Blockchain, Crypto, Cryptoeducation, ...

Comments

Any time you put your personal information out there, you are entrusting someone with it of course, and so it becomes a very good idea to make sure whoever it is you are entrusting this important information with can be trusted.

I am not sure enough people do this, and I think there are people who understand full well this truth, and take as much advantage of it as they can.

$ 0.00
User's avatar Porwest
1 year ago

People see other people doing something and they just put their trust to give personal information. I agree with you. When you look into whether they are trustworthy or not, you can make a good decision.

$ 0.03
User's avatar rezoanulvibes
1 year ago

Using a password manager is as vulnerable as using the same password for all online accounts because a password manager uses a single master password to safeguard the accounts, which is a single point of failure. I never recommend it.

I use a simple technique. https://read.cash/@Unity/how-to-strengthen-password-security-using-brain-memory-c3040c82

$ 0.00
User's avatar Unity
1 year ago

You're right. You cannot rely on a password manager. A single point of failure can destroy everything. I like your suggested technique that includes a long and strong password + salt. Even if a hacker gets the first part of the password, the last part aka, salt cannot be hacked.

$ 0.00
User's avatar rezoanulvibes
1 year ago
About us Rules What is Bitcoin Cash? Affiliate program Get sponsored Self-host hello@read.cash