BTC $71,807
2026 Bull Run Is Building Start trading with 5% OFF all fees
Sign Up Now
BTC $71,807
Bull Run 2026 | 5% Off Fees Open your Binance account today
Sign Up

LastPass phishing scam targets users, seeks master passwords

Phishing campaign targets LastPass users with fake maintenance emails urging master passwords and redirecting to spoofed domains

  • LastPass customers are being targeted by a new phishing campaign that asks for master passwords under the guise of urgent maintenance.
  • The emails include specific subject lines and direct recipients to a phishing URL that then redirects to a fake domain.
  • The messages originate from several illegitimate addresses; LastPass says it will never ask for master passwords and is working to remove the malicious infrastructure.

LastPass warned customers on Jan. 19, 2026, about an active phishing campaign that attempts to steal master passwords, according to LastPass. Attackers send emails claiming upcoming maintenance and urging recipients to create a local backup within 24 hours.

- Advertisement -

The phishing messages use subject lines such as “LastPass Infrastructure Update: Secure Your Vault Now” and “Protect Your Passwords: Backup Your Vault (24-Hour Window).” Recipients are steered to a phishing site at group-content-gen2.s3.eu-west-3.amazonaws[.]com/5yaVgx51ZzGf, which then redirects to the fake domain mail-lastpass[.]com.

LastPass provided the sender addresses used in the campaign: support@sr22vegas[.]com, support@lastpass[.]server8, support@lastpass[.]server7, and support@lastpass[.]server3. The company emphasized that it will never ask users for their master passwords and is collaborating with third parties to take down the malicious infrastructure.

A spokesperson for the Threat Intelligence, Mitigation, and Escalation (TIME) team at LastPass said: “This campaign is designed to create a false sense of urgency, which is one of the most common and effective tactics we see in phishing attacks.” The company asked customers to remain vigilant and continue reporting suspicious activity.

This incident follows a previous warning from LastPass about an information-stealing campaign that targeted macOS users with fake GitHub repositories distributing Malware disguised as the password manager and other applications.

- Advertisement -

✅ Follow BITNEWSBOT on Telegram, Facebook, LinkedIn, X.com, and Google News for instant updates.

Previous Articles:

- Advertisement -
Ad
Altseason Is Loading. Don't watch from the sidelines.
SOL $90.51
DOGE $0.0963
LINK $9.02
SUI $1.00
5% off fees when you sign up
Start Trading
Ad
Pay Less on Every Trade. For Life.
$10K/mo volume Save $60/yr
$50K/mo volume Save $300/yr
$100K/mo volume Save $600/yr
5% off all trading fees when you sign up
Claim Your Discount

Latest News

Saylor’s ‘Orange Dots’ Signal Fails to Clarify Bitcoin Strategy

Strategy founder Michael Saylor posted a cryptic signal on Sunday, prompting analysts to call...

Crypto’s $2T Crash Awaits BlackRock Shock & FOMO

Bitcoin has stabilized near $60,000 after a downturn erased $2 trillion from the crypto...

Cambridge: Ethereum Energy Intensity Low, Overall Use High

Ethereum consumes roughly 7.87 GWh annually, the second-lowest energy intensity per market value among...

Saylor and Back oppose BIP-110 fork over Bitcoin security fears

Michael Saylor and Adam Back have publicly opposed BIP-110, a temporary Bitcoin fork proposal...

China, India groups target Pakistani police in cyber espionage

Suspected China- and India-aligned threat actors targeted Pakistani law enforcement in a sustained cyber...

Must Read

Top Best Metaverse Worlds To Buy Land

The metaverse has grown in our everyday conversation since Facebook announced its rebranding in October 2021 to META. The metaverse is a virtual world,...
Ad
Altseason Is Loading. These 4 coins are trending right now.
SOL $92.12
DOGE $0.0950
LINK $9.02
SUI $1.02
5% off spot fees when you sign up
Start Trading