LastPass Issues Warning About Fake Maintenance Alerts Aimed at Users

LastPass has issued a warning about a new phishing scam targeting its users by impersonating the password management service. The scam, which began around January 19, 2026, involves sending fraudulent emails that claim urgent system maintenance is underway, urging users to back up their saved passwords within a day. These emails direct users to a fake website, which then redirects them to another fraudulent site. LastPass emphasizes that they will never request users' main passwords and are collaborating with other companies to dismantle these fake sites. The scam exploits urgency to trick users, a common tactic in phishing attacks. LastPass advises users to remain vigilant and report suspicious activities, reiterating that they will never demand immediate action or request main passwords. This alert follows a previous scam targeting Apple users with fake software mimicking LastPass and other popular applications.

Stay secure — stay Wavasec. 🔐