ADVERTISEMENT

LastPass tells world more about recent breach, researchers frustrated

LastPass, a password manager with over 25 million users, gave more details about the latest breach into the company’s systems. The firm claims users’ personal data or master passwords were not affected – yet researchers are worried.

last-pass-last

Image by Shutterstock.

Gintaras Radauskas
Gintaras Radauskas Senior Journalist
Dec 23, 2022 Updated: 28 July 2025 3 min read

What the company claims

"The unencrypted URL breach is bad news for your security model, and you should be thinking about mitigations,”
John Scott-Railton, Senior Researcher at Citizen Lab at the University of Toronto

What does it actually mean?

ADVERTISEMENT

Frustration abounds

screen-past-last
ADVERTISEMENT