We may earn affiliate commissions for the recommended products. Learn more.

LastPass Review 2024


LastPass is a popular password manager praised for its simple, secure interface, strong encryption, and useful features like password sharing, two-factor authentication, and digital legacy. These advantages make it a favored choice for many users.

However, LastPass has its drawbacks. In August 2022, it was hacked, and later, in December 2022, encrypted user data was exposed by threat actors, raising concerns about its security.

In this detailed review, I will assess whether LastPass remains a reliable choice for password management and explore recent improvements to address past concerns. Continue reading to learn everything you need about its security, ease of use, pricing, and more.

⭐ Rating:
3.8
🥇 Overall rank:#12 out of #18
💵 Price:From $3.00/month
✂️ Free version:Yes, plus 30-day money-back guarantee
🌐 Browser extensions:Chrome, Firefox, Opera, Safari, Edge, Internet Explorer
🔥 Coupons:Cybernews Password Manager Coupons

LastPass review – pros and cons

Visit LastPass to learn more about the features

Ieva Jociūtė author sarunas karbauskas Eglė Author's picture
Why You Can Trust Cybernews

Our in-house research team thoroughly analyzes password managers, and our team of experts uses the gathered insights and hands-on experience to evaluate each provider accordingly. Find out how we assess password managers.

17
Password Managers Tested
6
Month Testing Cycle
2,400+
Hours of Extensive Testing
Recent update
I updated the article to reflect the most recent research and testing results. Changes were made to ensure the accuracy of information regarding LastPass's features, security practices, and overall performance.

LastPass review – key takeaways

LastPass is a popular password manager with useful features, but there are a few concerns. It's compatible across multiple platforms and offers a freemium model, giving users access to basic features for free while offering paid plans for more advanced tools. Here's a quick overview of LastPass:

  • Security. Despite strong AES-256 encryption and tools like 2FA and a Security Challenge for analyzing password strength, LastPass has experienced security breaches that have compromised user data, affecting its reputation.
  • Ease of use. LastPass shines in usability with its intuitive password importing/exporting, seamless integration across devices, and beginner-friendly interface.
  • Features. It provides a password vault, generator, and various multi-factor authentication options. Advanced features like the LastPass Authenticator and Emergency access add extra security and convenience.
  • Plans and pricing. LastPass operates on a freemium model, offering a free plan with essential tools. Paid plans include features like dark web monitoring and increased file storage, ranging from $3.00/month for individuals to $6.00/month for businesses.

Is LastPass safe?

No, LastPass is not considered 100% safe due to the security incidents and data breaches that affected the password manager and its users in the past. Hackers successfully threatened the provider on three different occasions – in 2015, 2021, and 2022 – which is why it’s impossible to endorse LastPass as a safe password manager for users.

Despite the fact that LastPass employs virtually unbreakable AES-256 encryption, incidents in the past have proven that the password manager is vulnerable. During the major data breach in 2022, hackers were able to steal credentials from a LastPass engineer and gain access to the cloud-based development environment.

Although the company dealt with the breach immediately, LastPass wasn’t able to prevent a secondary attack, during which hackers gained access to both encrypted and unencrypted user data, putting 25 million users at risk.

In conclusion, even if LastPass is taking all the measures to prevent data breaches in the future, it has clearly failed its users in the past, which is a significant blow to the company’s reputation. It’s possible that LastPass won’t experience any breaches in the future, but when it comes to password security, users don’t want to bet on hope. Instead, they want a password manager with a proven track record of security.

Expert comment
Security advocate and senior tech writer

LastPass plans and pricing

LastPass offers Free, Premium, Families, Teams, and Business plans to meet different needs. Each plan provides various features and security levels. Below, you'll find a table with the key features and prices for each plan.

PlanPriceNotable features
LastPass FreeFree
Secure password vault, autofill, password generator, security dashboard, 2FA, LastPass Authenticator, secure notes
LastPass Premium$3.00/monthEverything in Free + file sharing, dark web monitoring, Emergency Access, priority tech support, LastPass for applications, 1GB file storage, advanced 2FA
LastPass Families$4.00/monthEverything in Premium + family manager dashboard, unlimited shared folders
LastPass Teams $4.00/monthPrivate vaults for all users, shared folders, MFA, Security Dashboard, dark web monitoring
LastPass Business$6.00/monthEverything in Teams + 3 SSO apps with MFA, pre-integrated SSO apps, 100+ customizable policies, customizable user management

The LastPass Free plan includes essential password management features, such as storing unlimited passwords, autofill, password generation, and secure notes. However, it limits usage to one device type, either computer or mobile, and offers 50 MB of encrypted storage.

For $3.00/month, the LastPass Premium plan adds advanced features like dark web monitoring, one-to-many sharing, emergency access, and 1 GB of encrypted file storage. It supports unlimited devices and offers more robust security and convenience features.

Priced at $4.00/month, the LastPass Families plan supports up to six users, providing each with their own vault. It includes all Premium features plus a shared family dashboard for easy management and secure sharing of passwords among family members.

At $4.00/user/month, the LastPass Teams plan is designed for small businesses, offering secure password sharing, admin control, and user management for up to 50 users. It ensures collaborative and secure password management within small teams.

The LastPass Business plan costs $6.00/user/month and includes advanced security features such as single sign-on (SSO), multi-factor authentication (MFA), and detailed compliance reporting. It supports unlimited users and integrates with various business tools, providing comprehensive solutions for larger organizations.

Subscriptions & refund policy

The paid single-user and families plans come with a 30-day trial. It includes all the free and premium features of LastPass. Once the term ends, the user must pay for the chosen plan until the end of the subscription, unless the plan is cancelled before the 30 days elapse.

The 14-day trial that is offered for business clients includes unlimited password storage, password sharing, as well as user management and quick-to-setup security policies. A credit card is not required to sign up for this trial.

Although this may seem like a pretty standard and straightforward process, some users report issues. For example LastPass users have reported difficulties cancelling the subscription due to confusing interfaces and unclear cancellation options.

Some LastPass users have also found it difficult to communicate with the customer support team when dealing with cancellation. They reported delayed responses and an overall unhelpful assistance.

Finally, and most disconcertingly, some LastPass users noted they were charged even after cancelling the subscription.

To sum up, if you plan to use LastPass, it is important you review all subscription and refund policies carefully to make sure you understand the terms and know what to do in case you want to cancel a subscription.

How does LastPass work?

LastPass is quite easy to set up. Once you download the application onto your device and create your account, all you have to do is set up a master password and import the passwords you want stored in the LastPass vault.

The problem with LastPass is that if you forget your master password, you will lose access to your password vaults. That being said, you want to make sure that your master password is strong and unbreachable; otherwise, there’s no point in using a password manager at all. Luckily, you can set up master password recovery. With LastPass, you can do that using mobile account recovery (iOS), a hint/reminder, SMS recovery, or a one-time password. So, make sure you set up master password recovery as soon as you create your account.

Once your account is set up, LastPass offers to install a browser extension that’s compatible with Chrome, Firefox, Edge, Opera, and Safari Opera browsers. If you install them, and you have passwords saved on your browsers already, it will be easy to import them to LastPass. Notably, you can also import passwords from Bitwarden, Dashlane, KeePass, Keeper, 1Password, and RoboForm.

LastPass features overview

LastPass has features that cover all essential needs. It lets you keep usernames, passwords, and other sensitive data well protected. Take a quick look at what is included in its security and privacy suite.

The list seems promising, right? To enlighten you even more, I, with the help of the Cybernews team, have reviewed each feature separately. So, scroll down and find out what’s so good about each security tool that LastPass provides you with.

2FA, multi-factor authentication, and LastPass Authenticator

To make the data even safer, LastPass supports 2-factor authentication (2FA) and multi-factor authentication (MFA).

2FA is designed to keep your most sensitive information safe by making you take additional steps before accessing the LastPass vault where your passwords and usernames are kept. There are many options you can choose for your second factor, including:

  • LastPass Authenticator
  • Smartphone apps (Google Authenticator, Microsoft Authenticator, Symantec VIP, and others)
  • Software-based services (LastPass Grid, LastPass Sesame, and others)
  • Hardware tokens (YubiKey, RSA SecurID)

You can get the LastPass Authenticator app for free on Google Play, Apple Store, and Windows Store.

MFA allows you to combine even more factors for authentication and secures your logins to online services other than LastPass. You can choose which services to apply MFA to and which devices to trust.

Due to its usefulness for managing permissions, security levels, and high level of customizability, LastPass MFA (which is a separate app) is a B2B-oriented feature available with the MFA, Teams, Enterprise, and Identity plans. However, advanced multi-factor authentication options are available for individual premium users as well.

You can manage LastPass 2FA and MFA through the Multifactor Options section of your online dashboard.

One-Time Passwords (OTPs)

If you’re accessing your web vault from a device that doesn’t belong to you, you might be walking into a trap. You can’t know whether the device has a keylogger or other software that could capture your keystrokes. LastPass has a potential solution there with the one-time password feature. Using it, you can log in without revealing your master password.

You can generate LastPass one-time passcodes after you’ve logged in to your account. You can use them afterward, and each passcode will expire after use. It means that it’s impossible to log into an account twice with the same passcode. Plus, you can print them or store them using other methods to use later or in emergency recovery.

LastPass password generator

One of the best features that LastPass offers is its password generator. This will help you create strong passwords for your most visited websites and apps.

A password generator creates passwords for you, which means you don’t have to worry about qwerty or 123456789 not being strong enough to protect your privacy online. With a password generator, you’ll get unique passwords that have a variety of numbers, symbols, and capital and lowercase letters.

What’s great about LastPass password generator is that you can control how strong your password will be. For example, you can choose to include or skip numbers and symbols, select the length of your password, or make it easy to read and say.

lastpass-password-generator-tool
LastPass password generator tool

However, note that the password in the screenshot above is not particularly strong – increase the length and add both numbers and symbols to the password. After all, using LastPass means you don’t have to memorize your passwords.

While I always recommend to go for the long and hard passwords, having an option to customize them is a huge advantage.

LastPass country restriction

LastPass includes a handy feature called Country Restriction that lets users select specific countries from which logins are allowed. This enhances security, particularly when traveling or staying in different countries. This feature is simple to use and helps travelers protect their passwords from unauthorized access while abroad.

One thing to remember is that you can change your virtual location by using a Virtual Private Network (VPN). Thus, you can bypass the country restriction altogether.

Password vault

LastPass keeps your passwords in an online vault. You can access it on your desktop, web, or mobile device. As the vault is encrypted, your usernames and passwords are well protected against prying eyes.

One good thing about LastPass is that you can access its online storage (or vault) offline as well. If you want to log into your vault when offline, just make sure you've logged into your vault at least once with an internet connection. This way, your device caches a local version of your encrypted data to the device.

LastPass credit monitoring

LastPass users from the US can take advantage of a free credit monitoring alert feature, which ensures real-time protection, as you're notified if your credit report suddenly changes. The credit monitoring feature enables users to better monitor their credit report and protect themselves against identity theft.

lastpass-credit-monitoring-feature
LastPass credit monitoring feature

After completing these steps, you will be asked to create a new Form Fill Profile or select an existing one.

To enable the credit monitoring feature from an existing profile, find your profile on the left and click Enable Credit Monitoring. If you need, you can also edit form-fill, and enable the credit monitoring feature afterwards:

lastpass-edit-form-fill
LastPass edit Form Fill

LastPass Security Challenge

When you’re storing data in a password vault, one of the most appealing points of a password manager is that there’s everything in one place. It also means that it’s possible to evaluate whether the password is secure. You can do it by hand, or you could use the LastPass Security Challenge.

LastPass Security Challenge is a simple analytical tool that goes through all of your stored passwords and evaluates their complexity. If you’re reusing passwords with little to no uniqueness, you’ll immediately notice low-security challenge scores indicated in red. The good thing is that it also evaluates your master password’s complexity. So, you’ll not only reinforce the passwords that you use on other accounts but will be able to switch to a stronger master password.

lastpass-password-security
LastPass Security Challenge

LastPass web client

LastPass web client is the place where users keep their usernames and passwords. It can also help you manage your account’s settings and the information stored in the vault.

lastpass-vault-for-passwords
LastPass Vault for passwords

For the sake of comfort, your web vault is organized similarly to your desktop (or local) vault. The best part is that it's OS-neutral. You will be able to use this version with pretty much all web-enabled devices.

LastPass compatibility and ease of use

To test LastPass, I used a MacBook Air (macOS Sonoma 14.5), a OnePlus (Android 15), and Chrome and Firefox browsers. LastPass supports macOS, Windows, Linux, iOS, Android, and offers extensions for Chrome, Firefox, Edge, and Safari.

The setup was quick, requiring only an email and a master password. The interface is intuitive, with features like a password generator and autofill working seamlessly on tested sites such as Facebook, Amazon, and Twitter.

Browser extensions
The LastPass browser extensions have an intuitive and accessible user interface, allowing quick item creation and customization options like Autofill and Autologin, with seamless autofill performance on major websites.
Desktop app
The LastPass desktop application is easy to set up and mirrors the web version but has issues like difficulty editing some saved items and autofill not detecting known websites, although it includes a Quick Search feature for finding credentials.
Mobile app
The LastPass mobile app guides you through setup with ease-of-use features like biometric login and autofill, mirroring the browser extension interface and functioning flawlessly without any issues.

For desktop users, the web version is more reliable than the desktop app, which had issues with editing saved items and autofill detection. The mobile app is user-friendly, guiding through setup with features like biometric login and autofill, and it worked flawlessly. Overall, LastPass is highly compatible and easy to use across devices, despite minor issues with the desktop application.

LastPass browser extensions

When I tested the LastPass browser extensions on Chrome and Firefox, I found the user interface to be intuitive and user-friendly. All features were easily accessible, making the experience smooth and efficient. Creating new items was quick, and I appreciated the customization options for enabling Autofill and Autologin.

lastpass-browser-pass-generator
LastPass browser password generator

The autofill feature worked seamlessly across all the websites I tested, including Facebook, Amazon, and Twitter, without any issues. The password generator was handy, offering customizable options for secure passwords. Overall, the LastPass browser extensions provided a reliable and consistent user experience, making password management straightforward and stress-free.

LastPass desktop application

The LastPass desktop application for Mac is quick and easy to set up, taking about the same time as the web version. The interface is identical to the web version, providing a consistent user experience.

lastpass-desktop-vault
LastPass desktop vault

However, the desktop application has some issues. Some saved items cannot be edited, and autofill sometimes fails to detect known websites. Despite these shortcomings, the desktop app includes a Quick Search feature that allows you to locate and copy credentials without opening the application, adding a layer of convenience.

LastPass mobile app

The LastPass mobile application for OnePlus guides you through the setup process immediately after opening, offering to enable ease-of-use features like biometric login and autofill. The interface closely resembles the LastPass browser extension, making it user-friendly and intuitive.

lastpass-mobile-vault
LastPass mobile vault

All items are quickly accessible, and features are well-labeled under their respective sections. Throughout my use, I experienced no issues, and every feature worked flawlessly, ensuring a smooth and efficient mobile password management experience.

LastPass customer support

OptionAvailability
24/7 live chat❌ No (Personal and Business plan users only)
Email support✅ Yes
Knowledge base✅ Yes
How-to guides✅ Yes
Phone support❌ No (Personal and Business plan users only)

LastPass’ customer support is quite limited when it comes to different ways that users can access help. Traditionally, there’s a chatbot that attempts to solve your problem using the questions and information you type in. The experience is very enjoyable as the bot provides several options to choose from for every answer, leading to the final solution.

If the problem cannot be resolved, you can enter an email address into a support form, which registers your support ticket. In my experience, the support team responded within a day, and the issue was resolved after a single response, demonstrating efficient and effective support.

lastpass-customer-support-answer
LastPass customer support answer

There’s also a knowledge base that you can use to find guides for common problems and issues that LastPass users are likely to encounter. There’s a very convenient search bar that you can use to immediately get a list of all relevant articles.

24/7 web support and phone support are only available to Personal and Business plan users.

Bottom line: is LastPass trustworthy?

I found LastPass to be a strong password manager with robust AES-256 encryption, two-factor authentication, and handy features like credit monitoring and one-time passwords. The easy-to-use interface and various plans make it suitable for both individuals and businesses, helping to manage passwords effortlessly across different devices.

However, LastPass has areas that need improvement. It has faced security issues before, and the free version is limited to one device type and lacks direct customer support. The desktop app also struggles with editing saved items and autofill detection.

Overall, other password managers might provide better reliability and support. Users should stay updated on its security practices and carefully consider their needs, but LastPass can still be a good option for some due to its extensive features and ease of use.

How I tested LastPass password manager

I used our standard method for testing password managers. I tested LastPass by starting with its free desktop and mobile versions to evaluate its core features like password generation, storage, and syncing. Next, I tested the browser extensions to assess how effectively they capture and autofill login credentials.

After upgrading to the premium plan, I explored advanced features such as secure password sharing, dark web monitoring, and password health checks. Finally, I assessed its encryption standards, multi-factor authentication options, and overall user experience, ensuring that LastPass is intuitive, responsive, and secure for managing passwords across multiple devices.

FAQ

Comments

JSR
prefix 7 months ago
I have LastPass family version. I frequently share logins for streaming services, but I specify "Do not share password."

That worked fine until a couple of months ago when I shared my Netflix account with my son. Even though I said to share it privately (do not share password), the password was displayed in the share title field, unmasked!

When I contacted LastPass, I received the obligatory apology, instructions to uninstall and reinstall, etc. I asked for an explanation as to how it could happen, but they never got back to me as promised. How could a password show up in a title field, especially after marking it "do not share?"

I consider this a major security breach that they are not talking about.

Something to investigate? I don't know. Now I am searching for a family-friendly replacement.
Leave a Reply

Your email address will not be published. Required fields are markedmarked