A massive $150 million in XRP vanished from Ripple co-founder Chris Larsen's personal wallets in January 2024. The culprit? A LastPass security breach from 2022, where hackers snagged encrypted password vaults and took their sweet time cracking them. Once they had Larsen's private keys, it was game over. Major exchanges like Binance and Kraken spotted the stolen funds moving through their systems. The FBI's on the case, but this crypto catastrophe's full story is still unfolding.
Nearly every crypto investor's worst nightmare became reality for Ripple co-founder Chris Larsen when hackers swiped a staggering $150 million worth of XRP from his personal wallets. The massive January 2024 heist wasn't some sophisticated new hack – it was the result of something far more mundane: a LastPass password manager breach from 2022 coming back to bite with a vengeance.
A $150 million crypto nightmare unfolds as hackers exploit an old LastPass breach to drain Ripple founder's personal XRP wallets.
The theft, involving approximately 283 million XRP tokens, sent shockwaves through the crypto community. Initially reported as a $112 million loss, the true scope of the damage later emerged in U.S. law enforcement documents. Talk about a rough way to start the new year.
Here's where it gets interesting – and by interesting, we mean face-palm worthy. The LastPass breach from August and November 2022 gave hackers access to encrypted password vaults. Anyone who thought those stolen vaults were useless? Dead wrong. The thieves took their sweet time decrypting the data, and Larsen's accounts were like a golden ticket. After entering his private key into LastPass, Larsen had immediately destroyed physical records.
The market reacted predictably – XRP's price took a hit as traders processed the news. Major exchanges like Binance and Kraken found themselves unwitting participants in the drama as the criminals attempted to launder their ill-gotten gains. A security researcher named ZachXBT discovered the connection between the LastPass breach and the Ripple hack through a U.S. forfeiture complaint. At least Binance managed to freeze some of the stolen funds, but it was a drop in the bucket.
Larsen's quick acknowledgment of the "unauthorized access" to his personal wallets provided some transparency, though it probably didn't make him feel any better about the situation. The silver lining, if you can call it that, was that Ripple's corporate accounts remained untouched.
The FBI's investigation revealed an uncomfortable truth: this wasn't an isolated incident. The same LastPass threat actor had been helping themselves to millions in crypto through compromised accounts. It's a stark reminder that in crypto, your security is only as good as your weakest link – and sometimes that link is a password manager you trusted to keep your digital fortune safe.
