A slew of LastPass users has reported warnings that their accounts may have been compromised over the past few days. There is nothing wrong with that, according to LastPass itself.
A series of users of online password vaults LastPass has been reporting warnings from the company recently. On Twitter, Reddit, and other online platforms, there were reports of warning emails that LastPass sends to say that login attempts were happening.
“Someone just used your master password to log into your account from a device or location we don’t recognize,” the emails said. “LastPass blocked that attempt, but you better check.” That writing, among others, tech sites BleepingComputer and AppleInsider.
The reports, logically, caused some concern, but now LastPass is coming out with a statement. The company says there is no evidence of a data breach and emphasizes that user accounts have not been hacked. However, LastPass said it is investigating the situation further.
It’s common for bots, for example, to try to log into accounts with generated or default passwords, but LastPass does say some of the emails users received were “probably sent by mistake,” which in itself isn’t much inspires confidence.