CyberHappenings logo
Home Browse About

Track cybersecurity events as they unfold. Sourced timelines. Filter, sort, and browse. Fast, privacy‑respecting. No invasive ads, no tracking.

Phishing Campaign Targets LastPass Users with Fake Death Claims

First reported
Last updated
1 unique sources, 1 articles

Summary

Hide ▲

A phishing campaign is targeting LastPass users with fake death claims to gain access to their password vaults. The campaign, attributed to the financially motivated threat group CryptoChameleon (UNC5356), began in mid-October 2025. The attackers use phishing emails and fake websites to trick users into revealing their master passwords and passkeys. The phishing emails claim that a family member has requested access to the user's LastPass vault by uploading a death certificate. The emails include an agent ID number and a link to a fraudulent page where users are prompted to enter their credentials. In some cases, the attackers also call victims, posing as LastPass staff, to direct them to the phishing site. The campaign is more extensive and enhanced compared to a previous one in April 2024, now also targeting passkeys.

Timeline

  1. 24.10.2025 17:47 1 articles · 23h ago

    Phishing Campaign Targeting LastPass Users with Fake Death Claims

    A phishing campaign targeting LastPass users began in mid-October 2025. The campaign, attributed to the threat group CryptoChameleon, uses phishing emails and fake websites to trick users into revealing their master passwords and passkeys. The emails claim a family member has requested access to the user's LastPass vault and include a link to a fraudulent page. The campaign is more extensive than a previous one in April 2024 and also targets passkeys.

    Show sources
    Open in new tab

Information Snippets