KrebsOnSecurity has reviewed this signature but is not publishing it at the request of Monahan and other researchers, who say doing so could cause the attackers to alter their operations in ways that make their criminal activity more difficult to track.īut the researchers have published findings about the dramatic similarities in the ways that victim funds were stolen and laundered through specific cryptocurrency exchanges.
The threat actor moved stolen funds from multiple victims to the same blockchain addresses, making it possible to strongly link those victims.”īax, Monahan and others interviewed for this story say they’ve identified a unique signature that links the theft of more than $35 million in crypto from more than 150 confirmed victims, with roughly two to five high-dollar heists happening each month since December 2022. “I ran my own analysis on top of their data and reached the same conclusion that Taylor reported. “It’s one of the broadest and most complex cryptocurrency investigations I’ve ever seen,” Bax said. And you can transfer my funds.”īax said he closely reviewed the massive trove of cryptocurrency theft data that Taylor Monahan and others have collected and linked together. “If you have my seed phrase, you can copy and paste that into your wallet, and then you can see all my accounts. “The seed phrase is literally the money,” said Nick Bax, director of analytics at Unciphered, a cryptocurrency wallet recovery company.
#Lastpass changes march password
Which is why the best practice for many cybersecurity enthusiasts has long been to store their seed phrases either in some type of encrypted container - such as a password manager - or else inside an offline, special-purpose hardware encryption device, such as a Trezor or Ledger wallet. Image: /tayvano_Īrmed with your secret seed phrase, anyone can instantly access all of the cryptocurrency holdings tied to that cryptographic key, and move the funds to anywhere they like. MetaMask owner Taylor Monahan on Twitter. 28, Monahan said she’d concluded that the common thread among nearly every victim was that they’d previously used LastPass to store their “seed phrase,” the private key needed to unlock access to their cryptocurrency investments. Monahan has been documenting the crypto thefts via Twitter/X since March 2023, frequently expressing frustration in the search for a common cause among the victims.
#Lastpass changes march full
They are also deeply integrated into this ecosystem, employees of reputable crypto orgs, VCs, people who built DeFi protocols, deploy contracts, run full nodes.” “The victim profile remains the most striking thing,” Monahan wrote. Importantly, none appeared to have suffered the sorts of attacks that typically preface a high-dollar crypto heist, such as the compromise of one’s email and/or mobile phone accounts. Monahan said virtually all of the victims she has assisted were longtime cryptocurrency investors, and security-minded individuals.
Collectively, these individuals have been robbed of more than $35 million worth of crypto. Since late December 2022, Monahan and other researchers have identified a highly reliable set of clues that they say connect recent thefts targeting more than 150 people.
#Lastpass changes march software
Taylor Monahan is lead product manager of MetaMask, a popular software cryptocurrency wallet used to interact with the Ethereum blockchain. Since then, a steady trickle of six-figure cryptocurrency heists targeting security-conscious people throughout the tech industry has led some security experts to conclude that crooks likely have succeeded at cracking open some of the stolen LastPass vaults. In November 2022, the password manager service LastPass disclosed a breach in which hackers stole password vaults containing both encrypted and plaintext data for more than 25 million users.
0 kommentar(er)
