For those that store your information on an online manager

[_act_]

It is no more new but more losses are always linked to LastPass which was an online password manager. Before the stolen of more information that the hackers are using to steal from people, we warned people but they did not listen. LastPass issue has started since 2021 or 2022 until hackers were able to have full access to people's information and using it to steal from them.

Millions of dollars stolen has been linked to LastPass hack but another one has been linked to it by crypto investigator ZachXBT again now.

The January 2024 theft of 283 million XRP from Ripple co-founder Chris Larsen’s personal accounts has been linked to a password manager breach, according to a forfeiture complaint filed by US law enforcement revealed by crypto investigator ZachXBT.

The investigator shared a screenshot of the forfeiture complaint in his Telegram channel on March 7, claiming the theft “was the result of storing private keys in LastPass (password manager which was hacked in 2022). Up to this point, Chris Larsen had not publicly disclosed the cause of the theft.”

I do not know how someone will be able to sleep comfortably overnight and have a private key that have access to millions of dolar worth of coin on an online manager.

[CryptSafe]

It is unfortunate that people still store their passwords and vital information with online password managers which is never safe. I have always had the thought in me that anything that has to do with storing details such as passwords and other vital information online is never safe because there would be a time that such an app would be compromised and it is always team members that do that if I am not mistaken.
As long as it is an app that stores such information and the developers have access to it from their end, they can do the unthinkable. For this reason, I never trust any online data manager to store or entrust my information to.

As for Chris Larsen, I believe he must have been ashamed to come up publicly to say something about the hack since he being into crypto knows more about the safety of one's assets and privacy, it would make him look stupid and lazy in the eyes of the crypto community for him to have made such a big mistake trusting his details to an online manager that could not be trusted with such sensitive information. Many people are just that not security conscious of their assets and information and it is a pity that many hacks are related to things of this nature with a third-party app being the conduit through which hacks and theft is being committed.

[Upgrade00]

Storing private keys in a password manager is very risky, especially when it holds millions of dollars worth of crypto. People have come to trust technology so much these days and are willing to use it as there personal assistant to help make things convenient and quick, while ignoring the obvious risks involved

A regular book and pen can act as your password manager, immune to hacks and to an extent loss, since you do not carry it around as you do your devices.

[crwth]

It is no more new but more losses are always linked to LassPass which was an online password manager. Before the stolen of more information that the hackers are using to steal from people, we warned people but they did not listen. LassPass issue has started since 2021 or 2022 until hackers were able to have full access to people's information and using it to steal from them.

Millions of dollars stolen has been linked to LassPass hack but another one has been linked to it by crypto investigator ZachXBT again now.

Hey OP you need to adjust your post with using the right password manager’s name, which is LastPass. Not LassPass. it is kind of misleading because I thought there is a password manager that is named like that.

Anyway, I think it is LastPass problem as well for getting hacked and breached because that shouldn’t be something done if it was for them so they should be liable for that. They are not protecting the important things that a password manager should have.

I think there are better password managers out there but make sure that you don’t put a seed phrase or recovery keys that is worth a lot.

[Mia Chloe]

To start with I don't actually fancy the use of password managers whether those that use cloud storage online or those that store them offline in encrypted files. However the whole concept is so saddening that the same digital era we are happy to embrace is now becoming a thorn In The flesh when it comes to security and privacy.

Basically as time passes its gradually becoming more sickening and harder to store your data especially online. Even these days storing offline can be quite tricky because of thefts and burglary like we've seen in some recent stories too.

[Bitcoin Smith]

Online password manager, the term online explains everything and it's like using a cloud to store the seeds of your wallet details.

There are offline password manager like Keepass which is open sourced that encrypts the data with AES-256 encryption but my suggestion will be always go for non digital ways, it can be simply writing down the things on a paper and hide in a safe place or like secret ways of steel engrave and similar methods to save/backup seed phrase.

If you can't do them just use an Airgapped device to store the details of you're sure that it will never be accessed by anyone.

[Crypto Library]

Online password manager, the term online explains everything and it's like using a cloud to store the seeds of your wallet details.

There are offline password manager like Keepass which is open sourced that encrypts the data with AES-256 encryption but my suggestion will be always go for non digital ways, it can be simply writing down the things on a paper and hide in a safe place or like secret ways of steel engrave and similar methods to save/backup seed phrase.

If you can't do them just use an Airgapped device to store the details of you're sure that it will never be accessed by anyone.

I've tried to do this many times and to be honest, in my old days, five or seven years ago, I would write down the passwords to my emails and the passwords to my accounts on various platforms in my diary.
But the problems I faced there were when I left my diary at home and went somewhere and then I faced problems when I needed my password. Moreover, there is another fear that if my diary goes to someone or if someone unfortunately gets access, then all my Gmail and other platform accounts will go to them.
Since then, I have been keeping a Gmail as my primary account, maintaining privacy within it, writing down my passwords, and being able to access them digitally anywhere. I think it is better to trust Google than to trust other third-party websites.

[Cryptoprincess101]

Storing private keys in a password manager is very risky, especially when it holds millions of dollars worth of crypto.

I wonder how people still store their private keys with password managers when it can be compromised because we are in a digital age now where no matter how encrypted any system proves to save your information from being tampered with, it cannot be 100% trusted and it will be a careless behavior for someone to entrust their security details with any password manager even after coming across different cases where users got defrauded of their coins.

[Felicity_Tide]

~snip

I do not know how someone will be able to sleep comfortably overnight and have a private key that have access to millions of dolar worth of coin on an online manager.

And this boils down what each and everyone of us call "security".
You know, to most people, whatever has been stored on a device is 100% secured and safe, forgetting that even those who creates those devices makes regular update and find vulnerabilities that can be exploited at any point in time.

Call me local, but I prefer to write down every single piece of letter and words as long as my seed phrase is concerned. Upper case, low case, I take my time to write and duplicate because I don't need anyone to tell me how important it is. I can remember downloading a password manager few months ago, but I haven't used it till this very minute because I don't trust it that much.

And OP, from the news you shared, is it 283 million XRP, or $283 worth of?. But whichever, it's quite a massive amount.

[coupable]

Storing private keys in a password manager is very risky, especially when it holds millions of dollars worth of crypto.

I wonder how people still store their private keys with password managers when it can be compromised because we are in a digital age now where no matter how encrypted any system proves to save your information from being tampered with, it cannot be 100% trusted and it will be a careless behavior for someone to entrust their security details with any password manager even after coming across different cases where users got defrauded of their coins.

Some applications have the ability to run automatically without authorization, and unfortunately not everyone who uses them knows how to be careful with sensitive data. Closed-source applications have never been a good storage medium, including closed-source hardware wallets, if it weren’t for the expert reviews of commercial wallets. Most users don’t know how to manage their file and unintended mistakes can occur that can lead to disasters later on.

[Alphakilo]

I don't want it to sound like a cliche, but bad things happen to good people.

To give it my own tweak, bad things happen to good people who do not listen to warnings on how they can protect themselves from scammers, hackers, and thiefs who want nothing but to steal their cryptocurrency to make themselves rich.

It took two years for the co-found to reveal this because he was too hesitant out of embarrassment to do so. One would expect that such an individual would be the last person on earth to be a victim but not all co-founders are smart.

A lot of money is lost, and it is no fault of any other person other than the one who ignores security information.

[uchegod-21]

Storing private keys in a password manager is very risky, especially when it holds millions of dollars worth of crypto. People have come to trust technology so much these days and are willing to use it as there personal assistant to help make things convenient and quick, while ignoring the obvious risks involved

A regular book and pen can act as your password manager, immune to hacks and to an extent loss, since you do not carry it around as you do your devices.

Some of these news are narratives pushed to divert attention. Why has this side of the story not emanated since? Why should I agree that a cold wallet's password holding millions of dollars was stored in a password manager. Anyone can suggest, speculate or say anything, but I don't believe the narratives in OP.

[Catenaccio]

Millions of dollars stolen has been linked to LassPass hack but another one has been linked to it by crypto investigator ZachXBT again now.

I do not know how someone will be able to sleep comfortably overnight and have a private key that have access to millions of dolar worth of coin on an online manager.

Storing your sensitive information online is always a bad practice, and this principle is not restricted to password manager softwares but actually applied for all tools.

Storing it offline with all sensitive information individually including your identity documents, account passwords and wallet backups.

LastPass has bad history of hacks and data breaches, you can use better Passsword Manager Softwares that are open source and have better history such as Proton Pass, Kee Pass, Password Safe, Kee Pass XC, and Bitwarden.
https://proton.me/pass/download
https://keepass.info/download.html
https://pwsafe.org/
https://keepassxc.org/download/#windows
https://bitwarden.com/download/

[God Of Thunder]

LassPass ....LassPass ....LassPass

You have used the word LassPass three times in the OP, which made me think that it is not a typo but a new service, just like LastPass. But when I searched on Google, I did not find any service with this name. So, I assume it is a human error.

Back to the topic,
Personally, I have never used such an online service because I don't think I can rely on such services with a highly important thing like passwords.  I understand that some things are invented to make people's lives easier. But come on, guys, you don't have to use all of them. Password is a too sensitive thing. Remember your password. If these service fails somehow, you have to pay too much for that.

[traderethereum]

I prefer to safe it using offline ways such as write it in a book or other materials and keep it save for ourselves. We should avoid saving that personal info by online because that will give us risk if the online storage hack by the hackers.  We will be in trouble because our assets can be gone anytime after the hackers know the details of us. That is why we must know how to protect our personal info especially all things related to our wallet so we will not get any problem. No matter how big or small our asset, we must take care our personal info and that can be by keeping in a safe place that only us will know. We don't need to use other online tools that make it easier because that is our responsibility to our assets.

[DiMarxist]

Storing in the mobile phone or the laptop is not advisable and talk of online. Many people don't understand security precautions so they keep and save things anyhow. Before you save your seed phrase in your phone or computer you have to think twice if it is save. If the device is stolen what will happen to my coins? If the email is hacked what will happen to my coins? These are some people f the basic things to think of before executing the action.
The best way is paper wallet or hardware wallet if you can get it.

[cryptoaddictchie]

Imagine if one of biggest wallet provider metamask got compromise? I know its unlikely to happen but what if it does? Im sure this will be thr biggest heist the world could ever find out. I mean most users are using this non custodial wallet but if certain someone break the codes and able to penetrate and got access many users will suffer badly.

[Rockstarguy]

It is so unfortunate for the victims who have lose their details and asset due to online manager.  But I still imagine how would people think storing their details and passwords that contains important information and asset is more safe in online manager than when it is stored by their own self.

 Anything can happen to an online manager, these online managers are being managed by people which means those using  online manager are giving their details and passwords out for people they can't see to help them store their information and this makes no sense. Passwords,  seedphrase and other information are person which needs to be stored in the best form which you can always get them back anytime.

[avp2306]

After those data breaching incident happen before https://www.upguard.com/blog/lastpass-vulnerability-and-future-of-password-security I wonder why there are still people have courage to use this platform.

These incident and other recorded is already a good indicator that they should avoid to use it or maybe those other online password manager. Now there's another incident happen like that so hopefully people should stop using those app and better they should find another good ways to store their password offline.

Cryptocurrency is so famous now and to many exploits exist that's why its better to safekeep their funds rather than trying those risky platforms out there.

[Mpamaegbu]

Millions of dollars stolen has been linked to LassPass hack but another one has been linked to it by crypto investigator ZachXBT again now.

Subconsciously,I don't know why the Lazarus group always comes to mind whenever I read about online hacks this day. The group may not be responsible for the LastPass hack but its notoriety for hacks has earned it such disdain in my books.

A regular book and pen can act as your password manager, immune to hacks and to an extent loss, since you do not carry it around as you do your devices.

This works fine for me. Sadly, those who are against it will quickly cite fire incidence or emergency demolition as one of its demerits. They forget that its merits far outweigh whatever merits the online manager has in terms of safety.