Users furious after LastPass down for hours

The LastPass password manager is coming back to life after at least a 16-hour outage that left users unable to access their credentials and essential services.

The password managers’ status page indicates that services are returning to normal after a multi-hour outage left users unable to use them. LastPass started investigating the issue on June 6th at 5 p.m. UTC.

The platform’s status page announced that an update to LastPass’s Chrome browser extension caused load issues on the password manager’s backend infrastructure.

According to the platform, the issue impacted LastPass – Australia, LastPass – United States, LastPass – Europe, Vault, Federated Login (Microsoft Entra, Okta), Login (EU, US), and Mobile (iOS Password Manager, Android Password Manager).

Meanwhile, the service’s users fumed about the outage on Reddit, complaining they couldn’t access services without a password stored on LastPass.

“This is ridiculous. I don’t see how they recover from this since people are locked out of essential services for hours so far,” Redditor SnooCupcakes7018 wrote.

Another Redditor, askdennisbrown, shared his fears over the outage being related to a data leak. While the outage was not caused by any unauthorized activity, LastPass users had to deal with several data breaches affecting the password manager.

Last year, the company informed users that an unauthorized party gained access to “certain elements of their customers’ information.” The attackers apparently used information obtained in the August 2022 incident.

LastPass disclosed an incident in the summer where an attacker breached systems through a compromised developer account. They took portions of source code and some proprietary LastPass technical information.

LastPass is among the largest password managers in the market, with a fifth of the total market value. The platform boasts millions of customers and over 800 staff worldwide. The company enjoyed revenue approaching the $200 million mark in 2021. However, there’s no publicly available data on the company’s performance past last year’s data breach.