LastPass customer password vault backups exposed
Data Leak
Summary
Hide ▲
Show ▼
The 2022 LastPass data leak exposed backups of about 30 million customer password vaults, leaving more than 25 million users with a long-tail risk of offline cracking. The exposed vaults could be tested against weak master passwords without touching LastPass systems. That made the leak dangerous well beyond the original breach window because the stolen material could be abused over time.
Related Happenings
Vect ransomware flawed ChaCha20 implementation destroys large files
Technical Analysis
H score4
First: 29.04.2026 13:45
Last: 29.04.2026 13:45
Sources 1
About this happening:
**Vect 2.0 ransomware** was shown to use **raw ChaCha20-IETF (RFC 8439)** without authentication, causing files above **128 KB** to be permanently destroyed across **Windows, Linu...
Vect ransomware flawed ChaCha20 implementation destroys large files
Technical AnalysisAbout this happening: **Vect 2.0 ransomware** was shown to use **raw ChaCha20-IETF (RFC 8439)** without authentication, causing files above **128 KB** to be permanently destroyed across **Windows, Linu...
LastPass users phishing campaign using fake support threads
Campaign
H score37
First: 04.03.2026 22:44
Last: 04.03.2026 22:44
Sources 1
About this happening:
A **phishing campaign** is targeting **LastPass users** with fake account-access alerts, putting **vault credentials** at risk. The lure uses spoofed support threads and urgent li...
LastPass users phishing campaign using fake support threads
CampaignAbout this happening: A **phishing campaign** is targeting **LastPass users** with fake account-access alerts, putting **vault credentials** at risk. The lure uses spoofed support threads and urgent li...
Cloud password-manager zero-knowledge attack study exposes vault-recovery and integrity flaws
Technical Analysis
H score58
First: 16.02.2026 20:06
Last: 16.02.2026 20:06
Sources 1
About this happening:
A new **password-manager security study** found **25 attack classes** against **Bitwarden**, **LastPass**, **Dashlane**, and **1Password**, undermining **zero-knowledge encryption...
Cloud password-manager zero-knowledge attack study exposes vault-recovery and integrity flaws
Technical AnalysisAbout this happening: A new **password-manager security study** found **25 attack classes** against **Bitwarden**, **LastPass**, **Dashlane**, and **1Password**, undermining **zero-knowledge encryption...
Bitwarden LastPass Dashlane and 1Password vault compromise flaws security flaw
Vulnerability
H score41
First: 16.02.2026 19:15
Last: 16.02.2026 19:15
Sources 1
About this happening:
**Bitwarden, LastPass, Dashlane and 1Password** were found to have **cloud password manager vulnerabilities** that could let an attacker **view, change, recover, or delete vault p...
Bitwarden LastPass Dashlane and 1Password vault compromise flaws security flaw
VulnerabilityAbout this happening: **Bitwarden, LastPass, Dashlane and 1Password** were found to have **cloud password manager vulnerabilities** that could let an attacker **view, change, recover, or delete vault p...
ShinyHunters data-leak site exposing stolen attack data
Data Leak
H score71
First: 31.01.2026 17:02
Last: 31.01.2026 17:02
Sources 1
About this happening:
The **ShinyHunters** extortion gang is publishing stolen data on a **data-leak site** tied to its broader **Oracle PeopleSoft** theft campaign. New reporting adds the **University...
ShinyHunters data-leak site exposing stolen attack data
Data LeakAbout this happening: The **ShinyHunters** extortion gang is publishing stolen data on a **data-leak site** tied to its broader **Oracle PeopleSoft** theft campaign. New reporting adds the **University...
Timeline
-
05.01.2026 11:30 3 articles · 6mo ago
TRM Labs links LastPass vault exposure to multi-year crypto thefts
Technical Analysis UpdateTRM Labs said the 2022 LastPass exposure of around 30 million customer password vault backups created a long-tail risk for more than 25 million users, allowing Russian cybercriminals to drain digital wallets over multiple waves. The firm traced about $28m stolen from 2024 to early 2025, another $7m in September 2025, and withdrawals continuing into October 2025, with funds routed through Cryptomixer.io, Cryptex, Wasabi Wallet, and Audi6.
Show sources
- Experts Trace $35m in Stolen Crypto to LastPass Breach — www.infosecurity-magazine.com — 05.01.2026 11:30
- Experts Trace $35m in Stolen Crypto to LastPass Breach — www.infosecurity-magazine.com — 05.01.2026 11:30
- LastPass 2022 Breach Led to Years-Long Cryptocurrency Thefts, TRM Labs Finds — thehackernews.com — 25.12.2025 14:46
-
11.12.2025 19:09 1 articles · 7mo ago
ICO fines LastPass over 2022 customer data leak
Victim Impact UpdateThe UK Information Commissioner's Office fined LastPass £1.2 million after finding that an August 2022 breach led to theft of personal information, encrypted password vaults, and customer backup data for up to 1.6 million UK users, including company names, end-user names, billing addresses, email addresses, telephone numbers, website URLs, and IP addresses.
Show sources
- UK fines LastPass over 2022 data breach impacting 1.6 million users — www.bleepingcomputer.com — 11.12.2025 19:09