Scam of the Week: This LastPass Scam Is So Last Year
Last year, the popular password manager LastPass was the victim of a data breach. Because of this, cybercriminals have access to the names, email addresses, and phone numbers of LastPass’s customers. Since the breach, cybercriminals have been using LastPass’s data breach in various cyberattacks.
Recently, cybercriminals launched a phishing attack targeting LastPass users. In this scam, cybercriminals send you a spoofed LastPass email with a link asking you to verify your information. If you click the link, you’ll be taken to a spoofed LastPass login page. If you enter your login information, cybercriminals will have access to your sensitive information.
Follow the tips below to stay safe from similar scams:
- Never click a link in an email that you weren’t expecting.
- Be cautious when entering login information on a website accessed through an email. To stay safe, navigate directly to the organization's official website.
- Stay educated and watch the news for data breaches. If a service you use is breached, be extra cautious of any emails you get from that organization.
Source: KnowBe4.com