The flight of January 2024 of 283 million XRP (XRP) of the co -founder of Ripple, Chris Larsen, was linked to a violation of the password manager, according to a complaint of confiscation filed by the American police revealed by the cryptographic investigator Zachxbt.
The investigator shared a screenshot of the confiscation complaint in his Telegram channel on March 7, claiming that the flight “was the result of the storage of private keys in Lastpass (password management which was hacked in 2022). Until now, Chris Larsen had not publicly disclosed the cause of the flight. »»
In relation: The traction drama of the Zachxbt carpet reveals the extent of the work of unpaid detective
According to the shared complaint, the private keys to Larsen were stored in the online password manager before being destroyed. Four devices were activated with the password manager, which had a long single password.
The password manager, Lastpass, underwent two major violations – one in August 2022 and the other in November 2022 – where the attackers stole encrypted passwords and online password management data. According to the Federal Bureau of Investigation, which investigated the case, the compromised data was used to fly the cryptocurrency, among others.
The 283 million XRP stolen in January are 683 million dollars on March 7.
Source: Chris Larsen
Zachxbt draws the laundering of tokens
After XRP piracy against Larsen, Zachxbt drew the tokens on several crypto exchanges, notably Mexc, Gate.io, Binance, Kraken, OKX, HTX, HitBTC and others.
As Cintelelegraph reported, Lastpass pirates had stolen additional $ 45 million with crypto holders just before Christmas in December 2024. White Hat Hacker Team Security Alliance considers seed sentences and private keys stored on the password manager before 2023.
The storage of private keys or online seed phrases anywhere is considered a risky practice, many recommended to write them and store them in a safe or keep them in offline digital storage like a USB. A user can also divide their seed phrase into different parts and store them in several places.
Password managers have a place, however, in cryptography safety practices: the possibility of generating and storing complex passwords that can make the break in the much more difficult wallets.
In relation: Understand Multi-Factory Authentication (MFA) in cryptocurrency
