LastPass is alerting customers to a brand new energetic phishing marketing campaign that is impersonating the password administration service, which goals to trick customers into giving up their grasp passwords.
The marketing campaign, which started on or round January 19, 2026, entails sending phishing emails claiming upcoming upkeep and urging them to create an area backup of their password vaults within the subsequent 24 hours. The messages, LastPass stated, include the next topic strains –
- LastPass Infrastructure Replace: Safe Your Vault Now
- Your Information, Your Safety: Create a Backup Earlier than Upkeep
- Do not Miss Out: Backup Your Vault Earlier than Upkeep
- Vital: LastPass Upkeep & Your Vault Safety
- Defend Your Passwords: Backup Your Vault (24-Hour Window)
The emails are designed to steer unsuspecting customers to a phishing website (“group-content-gen2.s3.eu-west-3.amazonaws[.]com/5yaVgx51ZzGf”) that then redirects to the area “mail-lastpass[.]com.”
The corporate emphasised that it’s going to by no means ask customers for his or her grasp passwords and that it is working with third-party companions to take the malicious infrastructure down. It has additionally shared the e-mail addresses from which the messages originate –
- assist@sr22vegas[.]com
- assist@lastpass[.]server8
- assist@lastpass[.]server7
- assist@lastpass[.]server3
“This marketing campaign is designed to create a false sense of urgency, which is without doubt one of the most typical and efficient techniques we see in phishing assaults, a spokesperson for the Menace Intelligence, Mitigation, and Escalation (TIME) staff at LastPass informed The Hacker Information in a press release.
“We wish prospects and the broader safety neighborhood to remember that LastPass won’t ever ask for his or her grasp password or demand rapid motion below a decent deadline. We thank our prospects for staying vigilant and persevering with to report suspicious exercise.”
The event comes months after LastPass cautioned customers of an information-stealing marketing campaign concentrating on Apple macOS customers by means of pretend GitHub repositories that distribute malware-laced applications masquerading because the password supervisor and different in style software program.
