It might be that clicking the link won’t hurt you (or your computer), but you should anyway be careful just clicking such links. But, if you are in a hurry, you might feel a little stressed, then you might actually end up clicking the link saying that you want to delete your LastPass account. Luckily, I came to my mind before doing anything stupid, and when I later hovered my mouse above the link, I noticed that it wouldn’t take me to the LastPass website, but to some other site with a similar address.Īs you can see above, the email is quite spammy and there are lots of warning signs. Had I clicked some wrong button yesterday as I looked around on the website? For 10 seconds I actually got a little bit worried (and I even forgot that the email was found in my junk filter). Today I received an email that I have requested to delete my NordPass account.
I also did so as I wanted to compare it with NordPass, a different password manager that I am trying nowadays. Yesterday, I was looking around on my LastPass account as I wanted to look for different functions. Do I really want to delete my LastPass account? Since then, I am trying to pay better attention, but it is so easy to make mistakes, even though you know all about phishing emails and other scams/hacks. This could have been an ugly case in which some people would suddenly sell my Netflix subscription on eBay or maybe try to use the same username/password combination on other services. In a few seconds, I went to the real Netflix website and changed my password, and made sure to make Netflix log me out from all other devices.
But, when I had logged in I quickly understood that something was wrong because not even the address was correct. I quickly clicked the link and logged in to my Netflix account. Do you know what that is? Human stupidity, bad decisions, and a few minutes in which you lack concentration! LastPass phishing email.Ī few years ago, I received an email from “Netflix” telling me that my subscription had been canceled.
I really like it and enjoy using it, and if you only want to use it on your computer, you can actually have a great time with the free version.īut, there are a couple of things that a VPN cannot protect you against, and neither can a password manager. LastPass is one of the most famous password managers and I have been using it myself for years. That is also why the competition among password managers has grown rapidly in recent years. Some people use their browser for this, but that isn’t a very secure solution. It is impossible to follow the recommendations of having different passwords for all websites and services without using some sort of tool to remember your passwords.
The situation could be worse if we consider that some customers after having reported having changed their master passwords state that they received another login warning.Everyone who is taking online security seriously today is using a password manager of some sort.
This circumstance, if confirmed, suggests that the Password manager service was compromised, but at this time there is no evidence of compromise. Many users that that received the email warnings stated that their master passwords was only used to access the LastPass service and were not shared with other web services. We regularly monitor for this type of activity and will continue to take steps designed to ensure that LastPass, its users, and their data remain protected and secure.” “It’s important to note that we do not have any indication that accounts were successfully accessed or that the LastPass service was otherwise compromised by an unauthorized party. “LastPass investigated recent reports of blocked login attempts and determined the activity is related to fairly common bot-related activity, in which a malicious or bad actor attempts to access user accounts (in this case, LastPass) using email addresses and passwords obtained from third-party breaches related to other unaffiliated services.” Nikolett Bacso-Albaum Senior Director, Global PR/AR told BleepingComputer. The email warning sent by the company informs the users that the login attempts have been blocked due to the unusual origin locations. “LastPass blocked this attempt, but you should take a closer look. “Someone just used your master password to try to log in to your account from a device or location we didn’t recognize,” reads the warnings.