We may earn affiliate commissions for the recommended products. Learn more.

LastPass Review 2024

Price: From $3.00/month
Free version: Yes, plus 30-day money-back guarantee
Browser extensions: Chrome, Firefox, Opera, Safari, Edge
Things I like:
Things I don't like:
3.8
#13 out of #19
Compatible with:

LastPass is a popular password manager praised for its simple, secure interface, strong encryption, and useful features like password sharing, two-factor authentication, and digital legacy. These advantages make it a favored choice for many users.

However, LastPass has its drawbacks. In August 2022, it was hacked, and later, in December 2022, encrypted user data was exposed by threat actors, raising concerns about its security. However, in 2024, LastPass is now making changes both to its product and management following new ownership. The time has come to review it again.

Best LastPass alternative
NordPass is a security-focused password manager that offers advanced protection measures, including two-factor authentication, automatic backups, and independent audits. You can try it with a 30-day money-back guarantee.
cybernews® score
4.9 /5

In this detailed review, I will assess whether LastPass remains a reliable choice for password management and explore recent improvements to address past concerns. Continue reading to learn everything you need about its security, ease of use, pricing, and more.

kamile-bagdonaite Ieva Jociūtė author sarunas karbauskas Author's picture
Why You Can Trust Cybernews

Our in-house research team thoroughly analyzes password managers, and our team of experts uses the gathered insights and hands-on experience to evaluate each provider accordingly. Find out how we assess password managers.

17
Password Managers Tested
6
Month Testing Cycle
2,400+
Hours of Extensive Testing
Recent updates
In October 2024, I reviewed and updated the article to reflect the most recent and relevant information. I made changes to ensure the accuracy of information regarding LastPass's features and security. I also included some relevant and useful information like the LastPass setup guide, LastPass alternatives, and more.

LastPass review – key takeaways

LastPass is a popular password manager with an easy-to-use interface and useful features, but it also has a few security concerns. It's compatible across multiple platforms and offers a freemium model, giving users access to basic features for free while offering paid plans for more advanced tools. Here's a quick overview of LastPass:

  • Security. Although LastPass offers strong security features like AES-256 encryption, two-factor authentication (2FA), and the Security Challenge, their past data breaches still concern me regarding the safety of their users' data.
  • Ease of use. For me, the intuitive interface is where LastPass truly shines. I was impressed with the intuitive password importing/exporting, seamless integration across devices, and easy-to-navigate interface.
  • Features. It provides a password vault, generator, and various multi-factor authentication options. Advanced features like the LastPass Authenticator and Emergency access add extra security and convenience. I thought the country restriction feature was pretty interesting for travel security.
  • Plans and pricing. LastPass operates on a freemium model, offering a free plan with essential tools. Paid plans include features like dark web monitoring and increased file storage, ranging from $3.00/month for individuals to $6.00/month for businesses.

Who should use LastPass?

  • Individuals: especially if you’re a beginner and have not used a password manager before. LastPass’ intuitive interface and functions make password management very simple. The browser extension’s autofill function can be a big help if you have trouble remembering your logins.
  • Families: with the family plan, you can add up to 6 people to your subscription – friends or family members – and share logins and other important information securely.
  • Businesses: With plans for teams and businesses, each person gets their vault, and password sharing and access management between employees becomes a simple process.

Is LastPass safe?

No, LastPass is not considered 100% safe due to the security incidents and data breaches that affected the password manager and its users in the past. Hackers successfully threatened the provider on three different occasions – in 2015, 2021, and 2022 – which is why I can’t recommend LastPass as a safe password manager for users.

Despite the fact that LastPass employs virtually unbreakable AES-256 encryption, incidents in the past have proven that the password manager is vulnerable. During the major data breach in 2022, hackers were able to steal credentials from a LastPass engineer and gain access to the cloud-based development environment.

Although the company dealt with the breach immediately, LastPass wasn’t able to prevent a secondary attack, during which hackers gained access to both encrypted and unencrypted user data, putting 25 million users at risk.

In conclusion, even if LastPass is taking all the measures to prevent data breaches in the future, it has clearly failed its users in the past, which is a significant blow to the company’s reputation. It’s possible that LastPass won’t experience any breaches in the future. But when it comes to password security, I don’t want to blindly recommend this password manager based only on hope. Instead, I suggest choosing a password manager with a proven track record of security, like NordPass or 1Password.

Expert comment
Security advocate and senior tech writer

LastPass plans and pricing

LastPass offers Free, Premium, Families, Teams, and Business plans to meet different needs. Each plan provides various features and security levels. Below, you'll find a table with the key features and prices for each plan.

PlanPriceNotable features
LastPass FreeFree
Secure password vault, autofill, password generator, security dashboard, 2FA, LastPass Authenticator, secure notes, dark web monitoring
LastPass Premium$3.00/monthEverything in the Free plan + file sharing, dark web monitoring, Emergency Access, priority tech support, LastPass for applications, 1GB file storage, advanced 2FA
LastPass Families$4.00/monthEverything in the Premium + family manager dashboard, unlimited shared folders
LastPass Teams $4.00/monthPrivate vaults for all users, shared folders, MFA, Security Dashboard, dark web monitoring
LastPass Business$6.00/monthEverything in Teams + 3 SSO apps with MFA, pre-integrated SSO apps, 100+ customizable policies, customizable user management

The LastPass Free plan includes essential password management features, such as storing unlimited passwords, autofill, password generation, dark web monitoring, and secure notes. However, it limits usage to one device type, either computer or mobile and offers 50 MB of encrypted storage. This plan is a good choice for those who are okay with basic password security and don’t have a lot of sensitive data to protect.

For $3.00/month, the LastPass Premium plan adds advanced features like one-to-many sharing, emergency access, and 1 GB of encrypted file storage. It supports unlimited devices and offers more robust security and convenience features. I recommend this plan for anyone who needs to access their accounts on multiple devices and isn’t satisfied with the free plan limitations.

Priced at $4.00/month, the LastPass Families plan supports up to six users, providing each with their own vault. It includes all Premium features plus a shared family dashboard for easy management and secure sharing of passwords among family members. Naturally, the plan is great for families, households, or friends sharing streaming service accounts, for example.

At $4.00/user/month, the LastPass Teams plan is designed for small businesses, offering secure password sharing, admin control, and user management for up to 50 users. It ensures collaborative and secure password management within small teams. Any team will benefit from this plan – especially if you use a lot of tools and need to share access securely with multiple users at once.

The LastPass Business plan costs $6.00/user/month and includes advanced security features such as single sign-on (SSO), multi-factor authentication (MFA), and detailed compliance reporting. It supports unlimited users and integrates with various business tools – I recommend this plan as a comprehensive solution for larger organizations.

Subscriptions & refund policy

The paid single-user and family plans come with a 30-day trial. It includes all the free and premium features of LastPass. Once the term ends, the user must pay for the chosen plan until the end of the subscription, unless the plan is canceled before the 30 days elapse.

The 14-day trial that is offered for business clients includes unlimited password storage, and password sharing, as well as user management and quick-to-setup security policies. A credit card is not required to sign up for this trial.

Although this may seem like a pretty standard and straightforward process, some users report issues. For example, I had some difficulties with canceling subscriptions due to confusing interfaces and unclear cancellation options.

Our research team also reported on some users experiencing issues when communicating with the LastPass customer support team regarding cancellations. They noted delayed responses and overall unhelpful assistance.

Finally, what I found most disconcerting was that some LastPass users reported they were charged even after canceling the subscription.

To sum up, if you plan to use LastPass, I recommend you review all subscription and refund policies carefully to make sure you understand the terms and know what to do in case you want to cancel a subscription.

How does LastPass work?

LastPass is quite easy to set up, and requires only a few simple steps to get started:

  1. Create your LastPass account and download the apps and browser extensions to protect your passwords on all devices. lastpass google play
  2. Create your master password – you will use it to log in to LastPass. LastPass master password
  3. Set up master password recovery: it’s available as a mobile app recovery on iOS, a hint or a reminder, an SMS recovery, or as a one-time password.
  4. If you used a different password manager previously or saved passwords on your browser, import all your passwords to LastPass. You can import passwords to LastPass from Chrome, Firefox, Opera, and Safari, and password managers like Bitwarden, Dashlane, KeePass, Keeper, 1Password, and RoboForm. Importing passwords to Lastpass
  5. Alternatively, you can start adding passwords and other data to your account from scratch.

LastPass features overview

LastPass has features that cover all essential needs. In theory, it lets you keep usernames, passwords, and other sensitive data well protected. Take a quick look at what is included in its security and privacy suite:

Feature What it does
2FA, Multi-factor authentication, and LastPass Authenticator2-FA and MFA allow you to combine even more factors for authentication and secure your logins to online services other than LastPass.
One-Time Passwords (OTPs)Log in to LastPass without using your master password – a one-time password expires after a set time and keeps your account secure.
Password generatorWith a password generator, you’ll get unique passwords that have a variety of numbers, symbols, and capital and lowercase letters.
Country restrictionCountry Restriction lets users select specific countries from which logins are allowed. This feature is simple to use and helps travelers protect their passwords from unauthorized access while abroad.
Password vaultLastPass keeps your passwords in an online vault. You can access it on your desktop, web, or mobile device. The vault is encrypted, so your usernames and passwords are well-protected.
Credit monitoringThe credit monitoring feature enables users to better monitor their credit reports and protect themselves against identity theft.
Security ChallengeA simple analytical tool that goes through all of your stored passwords and evaluates their complexity.

To enlighten you even more, I, with the help of the Cybernews team, have reviewed each feature separately. So, scroll down and find out what’s so good about each security tool that LastPass provides you with.

2FA, multi-factor authentication, and LastPass Authenticator

To make the data even safer, LastPass supports 2-factor authentication (2FA) and multi-factor authentication (MFA).

2FA is designed to keep your most sensitive information safe by making you take additional steps before accessing the LastPass vault where your passwords and usernames are kept. There are many options you can choose for your second factor, including:

  • LastPass Authenticator
  • Smartphone apps (Google Authenticator, Microsoft Authenticator, Symantec VIP, and others)
  • Software-based services (LastPass Grid, LastPass Sesame, and others)
  • Hardware tokens (YubiKey, RSA SecurID)

You can get the LastPass Authenticator app for free on Google Play, Apple Store, and Windows Store.

MFA allows you to combine even more factors for authentication and secures your logins to online services other than LastPass. You can choose which services to apply MFA to and which devices to trust.

Due to its usefulness for managing permissions, security levels, and high level of customizability, LastPass MFA (which is a separate app) is a B2B-oriented feature available with the MFA, Teams, Enterprise, and Identity plans. However, advanced multi-factor authentication options are available for individual premium users as well.

You can manage LastPass 2FA and MFA through the Multifactor Options section of your online dashboard.

One-Time Passwords (OTPs)

If you’re accessing your web vault from a device that doesn’t belong to you, you might be walking into a trap. You can’t know whether the device has a keylogger or other software that could capture your keystrokes. LastPass has a potential solution there with the one-time password feature. Using it, you can log in without revealing your master password.

You can generate LastPass one-time passcodes after you’ve logged in to your account. You can use them afterward, and each passcode will expire after use. It means that it’s impossible to log into an account twice with the same passcode. Plus, you can print them or store them using other methods to use later or in emergency recovery.

LastPass password generator

One of the best features that LastPass offers is its password generator. This will help you create strong passwords for your most visited websites and apps.

A password generator creates passwords for you, which means you don’t have to worry about qwerty or 123456789 not being strong enough to protect your privacy online. With a password generator, you’ll get unique passwords that have a variety of numbers, symbols, and capital and lowercase letters.

What I liked about the LastPass password generator is that you can control how strong your password will be. For example, I could choose to include or skip numbers and symbols, select the length of my password, or make it easy to read and say.

lastpass-password-generator-tool
LastPass password generator tool

However, note that the password in the screenshot above is not particularly strong – increase the length and add both numbers and symbols to the password. After all, using LastPass means you don’t have to memorize your passwords.

While I always recommend going for the long and hard passwords, having an option to customize them is a huge advantage.

LastPass country restriction

LastPass includes a handy feature called Country Restriction that lets users select specific countries from which logins are allowed. This enhances security, particularly when traveling or staying in different countries. This feature is simple to use and helps travelers protect their passwords from unauthorized access while abroad.

One thing to remember is that you can change your virtual location by using a Virtual Private Network (VPN). Thus, you can bypass the country restriction altogether.

Password vault

LastPass keeps your passwords in an online vault. You can access it on your desktop, web, or mobile device. As the vault is encrypted, your usernames and passwords are well protected against prying eyes.

Something I appreciated about LastPass is that I could access the online storage (or vault) also when offline. If you want to log into your vault when offline, just make sure you've logged into your vault at least once with an internet connection. This way, your device caches a local version of your encrypted data to the device.

LastPass credit monitoring

LastPass users from the US can take advantage of a free credit monitoring alert feature, which ensures real-time protection, as you're notified if your credit report suddenly changes. The credit monitoring feature enables users to better monitor their credit reports and protect themselves against identity theft.

lastpass-credit-monitoring-feature
LastPass credit monitoring feature

After completing these steps, you will be asked to create a new Form Fill Profile or select an existing one.

To enable the credit monitoring feature from an existing profile, find your profile on the left and click Enable Credit Monitoring. If you need, you can also edit form-fill, and enable the credit monitoring feature afterwards:

lastpass-edit-form-fill
LastPass edit Form Fill

LastPass Security Challenge

When you’re storing data in a password vault, one of the most appealing points of a password manager is that there’s everything in one place. It also means that it’s possible to evaluate whether the password is secure. You can do it by hand, or you could use the LastPass Security Challenge.

LastPass Security Challenge is a simple analytical tool that goes through all of your stored passwords and evaluates their complexity. If you’re reusing passwords with little to no uniqueness, you’ll immediately notice low-security challenge scores indicated in red. I liked that it also evaluates your master password’s complexity. So, you’ll not only reinforce the passwords that you use on other accounts but will be able to switch to a stronger master password.

lastpass-password-security
LastPass Security Challenge

LastPass web client

LastPass web client is the place where users keep their usernames and passwords. It can also help you manage your account’s settings and the information stored in the vault.

lastpass-vault-for-passwords
LastPass Vault for passwords

For the sake of comfort, your web vault is organized similarly to your desktop (or local) vault. The best part is that it's OS-neutral. You will be able to use this version with pretty much all web-enabled devices.

LastPass compatibility and ease of use

To test LastPass, I used a MacBook Air (macOS Sonoma 14.5), a OnePlus (Android 15), and Chrome and Firefox browsers. LastPass supports macOS, Windows, Linux, iOS, and Android, and offers extensions for Chrome, Firefox, Edge, and Safari.

The setup was quick, requiring only an email and a master password. I found the interface intuitive, with features like a password generator and autofill working seamlessly on tested sites such as Facebook, Amazon, and Twitter.

Browser extensions
The LastPass browser extensions have an intuitive and accessible user interface, allowing quick item creation and customization options like Autofill and Autologin, with seamless autofill performance on major websites.
Desktop app
The LastPass desktop application is easy to set up and mirrors the web version but has issues like difficulty editing some saved items and autofill not detecting known websites, although it includes a Quick Search feature for finding credentials.
Mobile app
The LastPass mobile app guides you through setup with ease-of-use features like biometric login and autofill, mirroring the browser extension interface and functioning flawlessly without any issues.

When testing web and desktop apps, I found the web app version to be more reliable. It was more consistent with autofill detection and editing saved items. The mobile app is user-friendly, guiding through setup with features like biometric login and autofill, and it works flawlessly. Overall, I can say that LastPass is highly compatible and easy to use across devices, despite minor issues with the desktop application.

LastPass browser extensions

When I tested the LastPass browser extensions on Chrome and Firefox, I found the user interface to be intuitive and user-friendly. All features were easily accessible, making the experience smooth and efficient. Creating new items was quick, and I appreciated the customization options for enabling Autofill and Autologin.

lastpass-browser-pass-generator
LastPass browser password generator

The autofill feature worked seamlessly across all the websites I tested, including Facebook, Amazon, and Twitter, without any issues. The password generator was handy, offering customizable options for secure passwords. Overall, I found the LastPass browser extensions reliable and consistent. It made my password management straightforward and stress-free.

LastPass desktop application

The LastPass desktop application for Mac is quick and easy to set up, just like the web app. The interface is identical to the web version, providing a consistent user experience.

lastpass-desktop-vault
LastPass desktop vault

However, I had some issues with the desktop application. I couldn’t edit some saved items, and autofill sometimes failed to detect known websites. By contrast, NordPass doesn’t have such issues. Despite these shortcomings, the desktop app includes a Quick Search feature that lets me locate and copy credentials without opening the application. I thought it was quite convenient.

LastPass mobile app

The LastPass mobile application for OnePlus guided me through the setup process immediately after opening, offering to enable ease-of-use features like biometric login and autofill. The interface closely resembles the LastPass browser extension, so I found it user-friendly and intuitive.

lastpass-mobile-vault
LastPass mobile vault

All items are quickly accessible, and features are well-labeled under their respective sections. Throughout my use, I experienced no issues, and every feature worked flawlessly, ensuring a smooth and efficient mobile password management experience.

LastPass customer support

OptionAvailability
24/7 live chat❌ No (Personal and Business plan users only)
Email support✅ Yes
Knowledge base✅ Yes
How-to guides✅ Yes
Phone support❌ No (Personal and Business plan users only)

LastPass’ customer support is quite limited when it comes to different ways that users can access help. Traditionally, there’s a chatbot that attempts to solve your problem using the questions and information you type in. The experience is very enjoyable as the bot provides several options to choose from for every answer, leading to the final solution.

If the problem cannot be resolved, you can enter an email address into a support form, which registers your support ticket. In my experience, the support team responded within a day, and the issue was resolved after a single response, demonstrating efficient and effective support.

lastpass-customer-support-answer
LastPass customer support answer

There’s also a knowledge base that you can use to find guides for common problems and issues that LastPass users are likely to encounter. There’s a very convenient search bar that you can use to immediately get a list of all relevant articles.

24/7 web support and phone support are only available to Personal and Business plan users.

LastPass alternatives

If you're not sure if LastPass is good for you, take a look at some of th alternatives, including their price, login options, business plan availabilities, and more:

NordPass1PasswordRoboFormKeeperDashlane
Brand1password
Rating
4.9
4.8
4.7
4.6
4.5
Price$1.34/month$2.99/month$0.99/month$1.46/month$3.75/month
Free versionYes14-day trialYesYes, and a 14-day trialYes
Biometric loginYes ✅Yes ✅Yes ✅Yes ✅Yes ✅
Multi-factor authenticationYes ✅Yes ✅Yes ✅Yes ✅Yes ✅
Business planYes ✅Yes ✅Yes ✅Yes ✅Yes ✅
Open-sourceNo ❌Yes ✅No ❌Yes ✅Yes ✅ (Android and iOS apps)

Bottom line: is LastPass trustworthy?

It is still difficult to consider LastPass as trustworthy as some other top password managers on the market due to LastPass’ history of serious data breaches and overall security issues.

Despite offering an intuitive application, being easy to use, and including numerous useful features like one-time-passwords, data breach monitoring, and credit monitoring, LastPass still has some drawbacks. It has faced security issues before, and the free version is limited to one device type and lacks direct customer support. The desktop app also struggles with editing saved items and autofill detection.

Overall, other password managers might be more reliable – NordPass and 1Password remain my top recommendations. LastPass can still be a good option for some due to its extensive features and ease of use, but users should stay updated on its security practices and carefully consider their needs.

How I tested LastPass password manager

I used our standard method for testing password managers. I tested LastPass by starting with its free desktop and mobile versions to evaluate its core features like password generation, storage, and syncing. Next, I tested the browser extensions to assess how effectively they capture and autofill login credentials.

After upgrading to the premium plan, I explored advanced features such as secure password sharing, dark web monitoring, and password health checks. Finally, I assessed its encryption standards, multi-factor authentication options, and overall user experience, ensuring that LastPass is intuitive, responsive, and secure for managing passwords across multiple devices.

FAQ

Comments

JSR
prefix 10 months ago
I have LastPass family version. I frequently share logins for streaming services, but I specify "Do not share password."

That worked fine until a couple of months ago when I shared my Netflix account with my son. Even though I said to share it privately (do not share password), the password was displayed in the share title field, unmasked!

When I contacted LastPass, I received the obligatory apology, instructions to uninstall and reinstall, etc. I asked for an explanation as to how it could happen, but they never got back to me as promised. How could a password show up in a title field, especially after marking it "do not share?"

I consider this a major security breach that they are not talking about.

Something to investigate? I don't know. Now I am searching for a family-friendly replacement.
Leave a Reply

Your email address will not be published. Required fields are markedmarked