- Phishing Emails Claim Victims Are Dead to Steal LastPass Master Passwords
- Fake Site Last Step Recovery[.]com imitates LastPass to collect credentials and access keys
- CryptoChameleon group behind the attack; Targets include crypto wallets and passwordless logins.
Scammers are trying to obtain LastPass users’ master passwords with a devious phishing email scheme linked to their deaths.
The password manager has an inheritance feature, so if a person proves that the account owner is deceased and that they are the next of kin (or are deemed to have access to the account), LastPass can comply and hand them over.
However, in phishing emails, victims are told that someone has uploaded a death certificate confirming that they have died and that, unless they act quickly, they will be granted access to their Vault (essentially an encrypted password storage database).
Cryptochameleon
“Act fast” means clicking a link and signing in to your LastPass account. However, those who rush to do so will not notice that the website they log into is not LastPass, but lastpassrecovery.[.]com – A fraudulent landing page created solely to collect login credentials from gullible people.
The threat actor behind this morbid campaign is called CryptoChameleon: they are a well-known hacking collective that specializes in the theft of cryptocurrencies.
In the past, the group has been seen targeting Binance, Kraken, Gemini wallets and other platforms, using fake Okta, Gmail, iCloud and Outlook login pages, as well as passcodes.
Access keys are a passwordless authentication method that uses public key cryptography to verify a person’s identity without storing or entering a password. It is generally considered much more secure than a password, and many of the world’s largest technology companies have pushed to replace them entirely.
Obviously, the best way to defend against the attack is to think before you click and be skeptical of any email that demands urgent action.
Through beepcomputer
Follow TechRadar on Google News and add us as a preferred source to receive news, reviews and opinions from our experts in your feeds. Be sure to click the Follow button!
And of course you can also follow TechRadar on TikTok for news, reviews, unboxings in video form and receive regular updates from us on WhatsApp also.
The best antivirus for all budgets
