LastPass users phishing campaign using fake support threads
Campaign
Summary
Hide ▲
Show ▼
A phishing campaign is targeting LastPass users with fake account-access alerts, putting vault credentials at risk. The lure uses spoofed support threads and urgent links to a fake login page on verify-lastpass[.]com. LastPass says its infrastructure has not been compromised, but the campaign is still trying to harvest user passwords.
Related Happenings
LastPass impersonation phishing campaign using fake maintenance notices
Campaign
First: 21.01.2026 08:40
Last: 21.01.2026 08:40
Sources 1
About this happening:
An active **LastPass impersonation phishing campaign** is targeting password-manager users with fake maintenance notices to steal **master passwords**. The operation began on or a...
LastPass impersonation phishing campaign using fake maintenance notices
CampaignAbout this happening: An active **LastPass impersonation phishing campaign** is targeting password-manager users with fake maintenance notices to steal **master passwords**. The operation began on or a...
LastPass customer password vault backups exposed
Data Leak
First: 05.01.2026 11:30
Last: 05.01.2026 11:30
Sources 1
About this happening:
The **2022 LastPass data leak** exposed backups of about **30 million customer password vaults**, leaving more than **25 million users** with a **long-tail risk** of offline crack...
LastPass customer password vault backups exposed
Data LeakAbout this happening: The **2022 LastPass data leak** exposed backups of about **30 million customer password vaults**, leaving more than **25 million users** with a **long-tail risk** of offline crack...
LastPass-branded phishing campaign targeting customers
Campaign
First: 16.10.2025 15:30
Last: 16.10.2025 15:30
Sources 1
About this happening:
A **LastPass-branded phishing campaign** is luring customers to fake desktop-app and phishing sites, creating immediate **credential-theft risk**. The emails use a breach-themed s...
LastPass-branded phishing campaign targeting customers
CampaignAbout this happening: A **LastPass-branded phishing campaign** is luring customers to fake desktop-app and phishing sites, creating immediate **credential-theft risk**. The emails use a breach-themed s...
LastPass and Bitwarden fake-breach phishing campaign
Campaign
First: 15.10.2025 22:22
Last: 15.10.2025 22:22
Sources 1
About this happening:
An **ongoing phishing campaign** is impersonating **LastPass** and **Bitwarden** to push users toward a fake desktop password-manager app, creating a risk of **PC hijacking** and...
LastPass and Bitwarden fake-breach phishing campaign
CampaignAbout this happening: An **ongoing phishing campaign** is impersonating **LastPass** and **Bitwarden** to push users toward a fake desktop password-manager app, creating a risk of **PC hijacking** and...
Timeline
-
04.03.2026 22:44 2 articles · 2mo ago
LastPass warns users about phishing campaign
Initial DisclosureLastPass warns users about a phishing campaign targeting LastPass users with fake unauthorized account access alerts, spoofed "LastPass Support" display names, and subject lines that mimic forwarded internal support conversations to pressure victims into clicking links such as "report suspicious activity," "disconnect and lock vault," and "revoke device." The messages direct users to a fake LastPass login page on verify-lastpass[.]com and related modified URLs that collect LastPass credentials, while LastPass says its infrastructure has not been compromised and is working with third-party partners to take down the fraudulent websites.
Show sources
- Fake LastPass support email threads try to steal vault passwords — www.bleepingcomputer.com — 04.03.2026 22:44
- Fake LastPass support email threads try to steal vault passwords — www.bleepingcomputer.com — 04.03.2026 22:44