![lastpass browser extension firefox lastpass browser extension firefox](https://www.shsu.edu/dept/it@sam/tech-tutorials/lastpass/images/accept-firefox.png)
It's important to note that none of the login attempts have penetrated LastPass' two-factor authentication, which you should probably already be using for any service that offers it. Some other attempts came from India, and at least one other came from Thailand. The site is connected to an IP address associated with more than one of the login attempts, which appears to be from Brazil. One theory on the forum suggests that someone is exploiting a LastPass browser extension vulnerability through an exceptionally well-crafted phishing site. Here’s how LastPass protects you and steps you can take to stay secure: /rcWSIo9Q1x UPDATE: To reiterate, we have no indication that #LastPass was breached or compromised. Some users on Hacker News say they got login notifications after recently switching to new, unique passwords. The company believes the credentials came from past unrelated service hacks.
![lastpass browser extension firefox lastpass browser extension firefox](https://blog.lastpass.com/wp-content/uploads/browserpwdisable.gif)
Others report getting email notifications of strange login attempts on newer active accounts.Īfter looking into the reports, LastPass released a statement claiming it doesn’t think the service itself was compromised. However, it does not appear to be isolated to defunct credentials. LastPass users on the Hacker News forum are reporting login attempts on old and inactive accounts.
#LASTPASS BROWSER EXTENSION FIREFOX PASSWORD#
The password manager company claims these likely came from reused passwords uncovered from unrelated hacks, but some users disagree and have suggested various theories. In brief: LastPass users began reporting login attempts from unknown locations using correct master passwords earlier this week.