Author

Topic: LastPass data breach caused $53K in Bitcoin stolen, lawsuit alleges (Read 146 times)

copper member
Activity: 2114
Merit: 1814
฿itcoin for all, All for ฿itcoin.
Not trying to condone the lastPass data breach incident, but the person who lost the Bitcoins was also plain stupid.

1. What is the point of removing your bitcoins from a centralized exchange, keeping it in a supposed noncustodial wallet only to save the wallet's keys in another third party app?

2. On realizing that there was a data breach, the best thing he would have done was to sweep the bitcoins off the wallets he thinks might have leaked to fresh addresses, but no, he thought deleting the keys from the vault was the way to go.
legendary
Activity: 2114
Merit: 1403
Disobey.
Link to news
https://cointelegraph.com/news/lastpass-data-breach-led-to-53k-in-bitcoin-stolen-lawsuit-alleges

This is only reported , the exact damage can be much more than this. If I am right, their security has been breached a number of times in the past as well. One more lesson from this incident is that we should not trust every third party tool especially if we deal with crypto. These tools might lack our data in future resulting in financial crypto loss.

From the article:
"In December, LastPass admitted that if customers had weak Master Passwords, the attackers may be able to use brute force to guess this password, allowing them to decrypt the vaults."

Duh! What else do people expect. Of course an insecure masterpassword will render your account at risk.
The article in question does not make it clear weather any other data was stolen as a fault of lastpass or if just this users master-pw was too weak and thus allowed hackers to (brute)-force their way into his account.
Is there any more information on which data was actually breached regarding lastpass?

In any case: A PW manager should (if at all) only be used to store insignificant data for convenience. Leaving any important passwords / creditcard or passphrases on there is a risk noone should take, imho.
legendary
Activity: 2044
Merit: 1018
Not your keys, not your coins!
Lawsuits or not, when your bitcoin lost, it was lost forever.

Chance to see you get a compensation after all lawsuits is so small and nearly impossible. See Mt. Gox case and their progress to compensate victims.

Bitcoin transactions are irreversible so no way to revert it back to you. Lawsuits and compensations are nearly possible.

At the end, a chance for you to get any bitcoin back is about 0%.

Don't trust servers, any company to store your passwords, your seeds, your private keys. Learn from Mt. Gox, FTX, Celcius, Voyager, Three Arrows Capital and read Reminder: do not keep your money in online accounts

LastPass data breach is one of many breaches and it's not the first, not the last.
legendary
Activity: 2590
Merit: 1022
Leading Crypto Sports Betting & Casino Platform
Link to news
https://cointelegraph.com/news/lastpass-data-breach-led-to-53k-in-bitcoin-stolen-lawsuit-alleges

This is only reported , the exact damage can be much more than this. If I am right, their security has been breached a number of times in the past as well. One more lesson from this incident is that we should not trust every third party tool especially if we deal with crypto. These tools might lack our data in future resulting in financial crypto loss.

This is not even worth mentioning! $53k was less than one Bitcoin at the moment theft happened. People are losing more funds daily in even more trivial hacks and scams. Wasn't worth to create a separate thread for a nothingburger like that.  Cool

The main issue here is not how much money is lost, it shows the risk when storing important data with 3rd party software or using online storage services. Not only for these password storage applications, but we also absolutely do not store private keys or important passwords on online storage platforms.

Talking about LastPass a bit more, I advise everyone to stay away from this application, in the past, they were very vulnerable to hackers, and although they did not cause any serious problems, it is clear that their service has issues.
legendary
Activity: 2422
Merit: 1191
Privacy Servers. Since 2009.
Link to news
https://cointelegraph.com/news/lastpass-data-breach-led-to-53k-in-bitcoin-stolen-lawsuit-alleges

This is only reported , the exact damage can be much more than this. If I am right, their security has been breached a number of times in the past as well. One more lesson from this incident is that we should not trust every third party tool especially if we deal with crypto. These tools might lack our data in future resulting in financial crypto loss.

This is not even worth mentioning! $53k was less than one Bitcoin at the moment theft happened. People are losing more funds daily in even more trivial hacks and scams. Wasn't worth to create a separate thread for a nothingburger like that.  Cool
legendary
Activity: 2072
Merit: 4265
✿♥‿♥✿
To store such an amount by trusting a third-party application is completely absurd. Even for such a sum, LastPass itself could come up with a legend about a leak or a hack. Quite suspiciously, LastPass is said to have warned customers about the hack, but the person who filed the lawsuit against LastPass failed to prevent the theft. There have also been accusations that LastPass issued this warning quite late, while the developers were trying to understand the magnitude of the disaster. But, again, third-party applications can monitor all the saves that customers make, make thefts, and subsequently attribute this to hackers, bandits, UFOs, and other entities.
How can you have such a sum and not have a sound mind to entrust your money to a stranger?
full member
Activity: 1442
Merit: 108
Link to news
https://cointelegraph.com/news/lastpass-data-breach-led-to-53k-in-bitcoin-stolen-lawsuit-alleges

This is only reported , the exact damage can be much more than this. If I am right, their security has been breached a number of times in the past as well. One more lesson from this incident is that we should not trust every third party tool especially if we deal with crypto. These tools might lack our data in future resulting in financial crypto loss.
Always wonder why someone trusts those third party tools to keep their sensitive and very important data safe despite events like those has been happening for years. I guess most of them are just too lazy to type in their password. If you can't remember your passwords, safe it somewhere offline, at least those that are very important to you. No matter "what security grade" stuffs they use, there are always a chance someone will breach it and cause massive damage.

You are spot on with the reason that they are lazy. They do not even want to remember their passwords. Some think that is is more secured to keep passwords in an online password lock than a physical locker. With time, people should realize that these are also prone to hacks and leaks.
copper member
Activity: 2968
Merit: 575
www.Crypto.Games: Multiple coins, multiple games
Link to news
https://cointelegraph.com/news/lastpass-data-breach-led-to-53k-in-bitcoin-stolen-lawsuit-alleges

This is only reported , the exact damage can be much more than this. If I am right, their security has been breached a number of times in the past as well. One more lesson from this incident is that we should not trust every third party tool especially if we deal with crypto. These tools might lack our data in future resulting in financial crypto loss.
Always wonder why someone trusts those third party tools to keep their sensitive and very important data safe despite events like those has been happening for years. I guess most of them are just too lazy to type in their password. If you can't remember your passwords, safe it somewhere offline, at least those that are very important to you. No matter "what security grade" stuffs they use, there are always a chance someone will breach it and cause massive damage.
mk4
legendary
Activity: 2870
Merit: 3873
Paldo.io 🤖
Lol screw the bitcoin/crypto-related damages. Damages will be far higher if we take into account the credit/debit card details and personal identification information(you can save shopping/registration information like names and addresses into password managers) that have been leaked.
member
Activity: 116
Merit: 76
Wow, so many coins stolen, people will again suffer losses.
We really need more protections to prevent such losses. How can such security still be handeld so superficially?

From now on, all digital infrastructure should be reviewed and improved or build newly from experienced coders from scratch because like it has happened now repeatedly multiple times, it can't continue or some people will suffer again.
An improvement is really due! 
full member
Activity: 1442
Merit: 108
Link to news
https://cointelegraph.com/news/lastpass-data-breach-led-to-53k-in-bitcoin-stolen-lawsuit-alleges

This is only reported , the exact damage can be much more than this. If I am right, their security has been breached a number of times in the past as well. One more lesson from this incident is that we should not trust every third party tool especially if we deal with crypto. These tools might lack our data in future resulting in financial crypto loss.
Jump to: