- #1
- 2,157
- 2,719
Several users received email warnings of unfamiliar login attempts and even logins to their LastPass account. The question arises whether the LastPass master password has been leaked in a data breach. According to LastPass, the passwords were not leaked and this was a regular "stuffing attack" in which a bot tries to access accounts using passwords from past data breaches. The company has also said that no account has been compromised, and that, some false alerts were triggered by an error in their system, which, they claim, has been fixed. But people still reported suspicious activity, even after changing their master password. Some reported that they were unable to change the master password or disable/delete their accounts.
More information can be found in this tweet-thread:
Maybe it's a good time to change the master password if you are using LastPass. I tried changing mine, and got an error, but it seems to have changed as I got logged out from the LastPass extension on Chrome and had to log in again using the new password.
More information can be found in this tweet-thread:
Maybe it's a good time to change the master password if you are using LastPass. I tried changing mine, and got an error, but it seems to have changed as I got logged out from the LastPass extension on Chrome and had to log in again using the new password.