Jump to content
  • LastPass, Bitwarden users targeted with fake security alerts

    Karlston

    • 1 comment
    • 128 views
    • 3 minutes
     Share


    • 1 comment
    • 128 views
    • 3 minutes

    LastPass is warning users about an ongoing phishing campaign that is using fake security notices to direct them to fraudulent websites.

     

    The phishing emails are crafted to resemble legitimate corporate communications, notifying recipients of updated security policies and directing them to a landing page that impersonates DocuSign and claiming to provide a document for review.

     

    LastPass emphasizes that its systems have not been compromised and that the phishing emails did not originate from its infrastructure, despite the attackers using domains designed to appear as legitimate company services.

     

    The emails sent from ‘[email protected]’ notify the user of alleged service policy changes in LastPass, including enhanced SaaS monitoring, master password reset options for administrators, and admin console improvements.

    Malicious email
    Malicious email
    Source: BleepingComputer

    Clicking on the ‘Review & Access Terms’ button embedded in the email takes users to a website impersonating the DocuSign service widely used for sending, signing, and managing documents electronically.

     

    However, the domain used is lastpasscompliance[.]com, which has been flagged as malicious by Microsoft Defender for Office 365 and Cloudflare.

    Fake DocuSign website
    Fake DocuSign website
    Source: LastPass

    Although LastPass could not confirm the goal of the campaign, the company says that the fake site prompts the user to download a file claiming to support both Windows and macOS.

     

    The site offers live support through a chat box, but it is unclear if it is functional. At the time of writing, the malicious website has been taken offline.

     

    BleepingComputer has found that Bitwarden users are targeted by similar emails sent from '[email protected]' and redirecting them to bitwardencompliance[.]com.

    Email targeting Bitwarden users
    Email targeting Bitwarden users
    Source: BleepingComputer

    In March, LastPass warned about fake unauthorized account access alerts impersonating the password service, targeting users with fabricated communication threads designed to increase urgency and lead to data exposure.

     

    Earlier, in January, LastPass users were targeted by fake alerts claiming they needed to back up their vaults within 24 hours, allegedly due to upcoming system maintenance.

     

    LastPass has cautioned users that it will never ask users for the master password and asked them to report any suspicious communications to [email protected].

     

    Users who entered credentials on phishing sites are advised to change their master passwords immediately from a trusted device and review their vaults for suspicious activity.

     

    Source


    Hope you enjoyed this news post. Feedback welcome.

    Posted Wednesday 15 July 2026 at 7:46 am AEST (my time).

    News posts: 2023 5,800+ | 2024 5,700+ | 2025 5,700+ | 2026 (to end of June) 2,475

    RIP Matrix

    • Like 2

    User Feedback

    Recommended Comments

    • Administrator

    I’m not sure, but this article seems misleading and lacks valid sources or logic regarding Bitwarden. No users have reported this, nor has there been any official statement from Bitwarden.

     

    From my search, I only found one person on Reddit asking on Bitwarden’s page if an email was valid, without mentioning being a Bitwarden user or receiving such an email.

     

     

    The idea that Bitwarden users are getting emails claiming their data was breached is unfounded, as fact checks confirm Bitwarden’s servers have never suffered a database breach, and user vaults remain secure and unexposed.

     

    The only logical explanation is that only LastPass users, whose data has been breached multiple times, received such emails for both LastPass and Bitwarden, and beyond that, there are no credible sources about Bitwarden.

    • Like 2
    Link to comment
    Share on other sites




    Join the conversation

    You can post now and register later. If you have an account, sign in now to post with your account.
    Note: Your post will require moderator approval before it will be visible.

    Guest
    Add a comment...

    ×   Pasted as rich text.   Paste as plain text instead

      Only 75 emoji are allowed.

    ×   Your link has been automatically embedded.   Display as a link instead

    ×   Your previous content has been restored.   Clear editor

    ×   You cannot paste images directly. Upload or insert images from URL.


  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...