How Many Times Has LastPass Been Hacked, and Is It Still Safe to Use?

MakeUseOf

By Katie Rees

Published Nov 8, 2023

LastPass is a well-known and trusted name in password security, but its history of breaches might make you consider an alternative.

LastPass has experienced multiple data breaches in the past, including one in 2015 that exposed user emails and master passwords. However, the majority of users who employed extra security layers were likely safe from the breach.
LastPass faced criticism in 2021 when it was discovered that their Android app contained third-party trackers, raising concerns about security. LastPass responded by stating that the trackers were used for application telemetry and could be disabled by users.
LastPass experienced a significant breach in 2022, where attackers accessed customer data and user vault information. This breach led to further consequences for LastPass and its mother company, GoTo, including stolen encrypted backups and evidence of an accessed encryption key.
Overall, while LastPass is generally considered safe, the multiple breaches and security incidents have led some users to seek alternative password managers that have not been compromised.