Dec 29, 2021 10:57:00

In the password manager 'LastPass', there are multiple situations where others try to access using a master password that only the person knows.

LastPass, a password generator that manages passwords and personal information, reports that multiple users have received messages warning that their master password has been compromised.

Ask HN: How did my LastPass master password get leaked? | Hacker News
https://news.ycombinator.com/item?id=29705957

LastPass master passwords may have been compromised | AppleInsider
https://appleinsider.com/articles/21/12/28/lastpass-master-passwords-may-have-been-compromised

LastPass users warned their master passwords are compromised
https://www.bleepingcomputer.com/news/security/lastpass-users-warned-their-master-passwords-are-compromised/

One day, Greg Technology , chief technology officer of decibel , which provides voice advertising, received an alert email from LastPass saying 'I blocked an attempt to log in from Brazil.'

According to the alert email, the login used the master password set for the LastPass account. Since the master password for Greg's LastPass account is stored in an encrypted local KeePassX file, Greg says, 'Someone knows his KeePassX file and the password for this file.' I heard he was surprised.

Something Very Strange And Bad Is Happening To A Lot Of People'S AttoLastPass ... Accounts I Posted This To Hacker News And It Gathered 192 Comments, Including 7 Separate Reports Of Master Password Breaches Ando Login Attempts From The Same Brazil IP Range Uhh Https: //t.co/tcM0aFdavv `

— Greg Technology (@technology_greg) December 27, 2021

Greg posted the issue on social news site Hacker News, and another user said, 'The master password is only in my head, and I just used LastPass on my PC and mobile phone. I've had a problem. '' I also received a warning email saying 'Someone tried to log in from Brazil' with an old LastPass account that I hadn't used for a long time. I searched for Have I been pwned? However, it didn't seem that the master password was leaked, 'said a report that someone tried to access the LastPass account using the master password.

There are also similar reports on Twitter.

Someone tried my @LastPass master password earlier yesterday and then someone just tried it again a few hours ago after I changed it. What the hell is going on?

— Valcrist (@Valcristerra) December 28, 2021

Security researcher Bob Diachenko commented, 'I've previously reported thousands of LastPass login pairs in a log of malware called RedlineStealer. Is this a coincidence?' However, according to the IT news site Bleeping Computer, the email address of the LastPass user who received the alert email this time was not found in this log.

At the same time thousands of LastPass login pairs were found in the recent Redline Stealer malware logs I reported earlier ... Coincidence? Https://t.co/1Nes7E0rFx

— Bob Diachenko (@MayhemDayOne) December 28, 2021

When Apple Insider, an IT news site, asked LastPass, 'I investigated a recently reported blocked login report and found that a malicious attacker used an email address and password leaked by another unrelated service. I found out that I was trying to access my LastPass account. At this point, there are no signs that my account was successfully accessed or that my LastPass was compromised. '

AppleInsider said, 'We recommend that you change your master password now, enable two-factor authentication, and be very careful about suspicious login attempts. Remove your password from LastPass and move to 1Password or Apple's iCloud Keychain. I also have a hand. '