Skip to main content
See every side of every news story
Get Started
SubscribeLogin
Published loading...Updated

Don’t click the LastPass 'create backup' link

The phishing campaign began Jan. 19, exploiting holiday staffing gaps to steal master passwords and access users' stored credentials, LastPass said.

  • LastPass on Tuesday warned users about phishing emails falsely claiming scheduled maintenance and urging vault backups within 24 hours; the campaign began around January 19, with a January 20 screenshot showing a 'Create Backup Now' link.
  • The campaign used urgency to prompt immediate action, as threat actors timed messages over the Martin Luther King Jr. holiday weekend to exploit reduced staffing and target password managers.
  • Messages carried subject lines like the ones LastPass listed and came from spoofed addresses such as support@lastpassserver8, redirecting first to group-content-gen2.s3.eu-west-3.amazonawscom/5yaVgx51ZzGf and then to mail-lastpasscom.
  • LastPass reiterated that 'no one at LastPass will ever ask for your master password' and urged users to report suspicious emails to abuse@lastpass.com while working with third-party partners to take down fake domains soon.
  • This episode follows earlier phishing campaigns against LastPass, including an October last year phishing campaign and recent campaigns, as the company published indicators and overhauled security after a 2022 breach.
Insights by Ground AI

12 Articles

Tom's GuideTom's Guide
Center

Popular password manager under attack by hackers — don’t fall for these fake backup emails

LastPass users should avoid emails recommending local vault backups, as a new holiday weekend phishing scam is currently targeting master passwords.

Read Full Article
The RegisterThe Register
Center

Don’t click the LastPass 'create backup' link

: Phishing campaign tries to reel in master passwords

Read Full Article
Tech RadarTech Radar
Center

LastPass warns users of new phishing campaign sending out fake support messages

LastPass targeted with phishing campaign pressuring victims into sharing their master passwords.

·United Kingdom
Read Full Article
PC MagPC Mag
Lean Left

Use LastPass? Watch Out for This Email Phishing Scam

The password manager says customers began receiving phishing emails on Jan. 19.

·United States
Read Full Article
BleepingComputerBleepingComputer
Center

Fake Lastpass emails pose as password vault backup alerts

LastPass is warning of a new phishing campaign disguised as a maintenance notification from the service, asking users to back up their vaults in the next 24 hours. [...]

Read Full Article
Cybersecurity DiveCybersecurity Dive
Center

LastPass warns backup request is phishing campaign in disguise

The company said customers were sent deceptive emails over the holiday weekend claiming the company was doing maintenance.

Read Full Article
Think freely.Subscribe and get full access to Ground NewsSubscriptions start at $9.99/yearSubscribe

Bias Distribution

  • 83% of the sources are Center
83% Center

Factuality Info Icon

To view factuality data please Upgrade to Premium

Ownership

Info Icon

To view ownership data please Upgrade to Vantage

The Hacker News broke the news in on Wednesday, January 21, 2026.
Too Big Arrow Icon
Sources are mostly out of (0)

Similar News Topics

Cyberattacks icon

Cyberattacks

Technology icon

Technology

Cybersecurity icon

Cybersecurity

News
Feed Dots Icon
For You
Search Icon
SearchBlindspot LogoBlindspotLocal