Security News > 2021 > December > LastPass users warned their master passwords are compromised
Many LastPass users report that their master passwords have been compromised after receiving email warnings that someone tried to use it to log into their accounts from unknown locations.
Reports of compromised LastPass master passwords are streaming in via multiple social media sites and online platforms, including Twitter, Reddit, and Hacker News.
"It's important to note that we do not have any indication that accounts were successfully accessed or that the LastPass service was otherwise compromised by an unauthorized party. We regularly monitor for this type of activity and will continue to take steps designed to ensure that LastPass, its users, and their data remain protected and secure," Bacso-Albaum added.
Users receiving these warnings have stated that their passwords are unique to LastPass and not used elsewhere.
Some customers have also reported changing their master passwords since they received the login warning, only to receive another alert after the password was changed.
LastPass users are advised to enable multifactor authentication to protect their accounts even if their master password was compromised.