![]() Many times, malicious threat actors can imitate an email address to look almost identical to the impersonated sender at first glance. Make a habit of double-checking a sender’s email address To help ensure your LastPass and other online accounts are secure from bad actors or hackers, we recommend you follow the online best practices below. If you receive a LastPass e-mail that you are unsure about, please send that email directly (in an attachment) to our security team at, who can verify if it is from LastPass. We worked quickly to have these malicious pages removed, but we think this is a good opportunity for us to remind customers of phishing best practices and to never give out personal information, including your master password to anyone, as we will never ask for it, nor do we know what it is. So how did your email address get used if it was not from us? Unfortunately, bad actors often harvest email addresses from security breaches where you’ve used your email address as a login credential in order to impersonate other brands in an attempt to convince you to interact with them. This email did NOT come from our LastPass team. Please take note this is NOT a LastPass email and NOT a LastPass domain. Yesterday, we discovered that a third-party bad actor attempted to impersonate a LastPass representative via email using the email address, This was an attempt to lure customers to click a link to update their billing and other information at a fraudulent URL customer-lastpass./verify, which has since been taken down by our security team. As part of our commitment to the security and privacy of our customers, we want to make sure you are aware of recent reports of fraudulent emails being sent to LastPass customers from email domains that purport to be from LastPass but are not. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |