LastPass 2022 Data Breach: Encrypted Password Vaults Stolen
Attackers stole encrypted password vaults from LastPass, and subsequent cryptocurrency thefts suggest some vaults have been cracked.
Unlock Full Privacy Intelligence
Get deep-dive reports on every company that touches your data. SeekerPro members see breach timelines, DSAR success rate...
Learn MoreAudit Your Site Free
Run a full privacy and compliance audit on any website in 60 seconds. NexusBro scans cookie consent, tracker behavior, a...
Learn MoreAutomate Privacy Compliance
Stop wasting hours on manual DSAR filings and cookie consent management. BliniBot handles the busywork so your team can ...
Learn MoreData Types Exposed
Response Timeline
August 2022: Initial development environment breach
November 2022: Second incident using data from first breach
December 2022: Customer vault data stolen revealed
2023: $35 million+ in cryptocurrency thefts linked to vaults
Detailed Analysis
The LastPass breach unfolded in stages. Attackers targeted a senior DevOps engineer home computer by exploiting a Plex vulnerability to install a keylogger. This gave access to encrypted customer vault backups along with unencrypted metadata including website URLs. Over $35 million in cryptocurrency thefts have been linked to cracked vaults.
The breach at LastPass exposed 25+ million users records through targeted attack on devops engineer home computer via plex vulnerability. 25+ million LastPass users whose encrypted vaults were stolen The incident highlights the ongoing challenges organizations face in protecting sensitive user data against increasingly sophisticated attack vectors. Security researchers have noted that breaches of this magnitude often result from a combination of technical vulnerabilities and organizational failures in security practices.
Current status: Cryptocurrency thefts totaling $35 million+ linked to stolen vaults; ongoing litigation. Affected users should take immediate steps to protect their accounts, including changing passwords, enabling multi-factor authentication, and monitoring financial accounts for unauthorized activity. Filing a DSAR with LastPass can help you understand what data was exposed and request its deletion.
What To Do If Affected
- Change your password immediately on this service and any accounts using the same password
- Enable two-factor authentication on all critical accounts
- Monitor your credit reports for unauthorized activity
- Consider placing a credit freeze with major bureaus
- File a complaint with your local data protection authority
Protect Your Data Across Every Platform
Tools trusted by thousands of privacy-conscious users worldwide
No card charged today. Cancel anytime.
Frequently Asked Questions
How many records were affected in the LastPass breach?
The LastPass data breach affected 25+ million users records. Data types exposed include: encrypted password vaults, website URLs (unencrypted), email addresses, billing addresses, phone numbers.
What should I do if I was affected by the LastPass breach?
If you were affected, change your passwords immediately, enable two-factor authentication, monitor your credit reports, and consider placing a credit freeze. You can also submit a DSAR to LastPass requesting deletion of your data.
Is there compensation for LastPass breach victims?
Cryptocurrency thefts totaling $35 million+ linked to stolen vaults; ongoing litigation Check if a class action settlement exists and whether you are eligible to file a claim.