LastPass fake password managers infect Mac users with malware

Cybercriminals are exploiting the popularity of LastPass by distributing fake password manager apps targeting Mac users. These counterfeit applications are designed to infect systems with malware, posing significant security risks. The fake apps masquerade as legitimate LastPass software but instead deploy malicious payloads that can steal sensitive information or compromise system integrity. Mac users are urged to download software only from official sources and remain vigilant against phishing attempts and suspicious downloads. This incident highlights the growing trend of attackers leveraging trusted brand names to deceive users and spread malware. Organizations and individuals should enhance their cybersecurity measures, including regular software updates, use of antivirus solutions, and user education to mitigate such threats. The rise of fake applications underscores the importance of verifying software authenticity to protect against data breaches and cyberattacks.

This Cyber News was published on www.bleepingcomputer.com. Publication date: Mon, 22 Sep 2025 15:40:25 +0000

Cyber News related to LastPass fake password managers infect Mac users with malware

LastPass Free vs. Premium: Which Plan Is Right for You? - LastPass is a password manager that integrates with web browsers and other applications to securely save and autofill passwords. LastPass Free comes at no cost and provides features like unlimited password management and dark web monitoring. LastPass ...
1 year ago Techrepublic.com

LastPass is enforcing some security changes to user accounts - LastPass is making some changes to enhance the security of its to user accounts. The news comes as a follow-up to the company's plans to enforce stronger passwords a few months ago. ADVERTISEMENT. A brief recap of the LastPass security breaches. ...
1 year ago Ghacks.net

LastPass breach linked to theft of $4.4 million in crypto - Hackers have stolen $4.4 million in cryptocurrency on October 25th using private keys and passphrases stored in stolen LastPass databases, according to research by crypto fraud researchers who have been researching similar incidents. The news comes ...
2 years ago Bleepingcomputer.com

LastPass now requires 12-character master passwords for better security - LastPass notified customers today that they are now required to use complex master passwords with a minimum of 12 characters to increase their accounts' security. Even though LastPass has repeatedly said that there is a 12-character master password ...
1 year ago Bleepingcomputer.com

Open Source Password Managers: Overview, Pros & Cons - There are many proprietary password managers on the market for those who want an out-of-the box solution, and then there are open source password managers for those wanting a more customizable option. In this article, we explain how open source ...
1 year ago Techrepublic.com

6 Best Enterprise Password Managers for 2024 Rated - Password managers are security tools that store, manage, and share authorization credentials safely for individual users and groups. In this article, I evaluate the top password managers and their ability to deliver and support solutions for ...
1 year ago Esecurityplanet.com

Feds Link $150M Cyberheist to 2022 LastPass Hacks – Krebs on Security - In September 2023, KrebsOnSecurity published findings from security researchers who concluded that a series of six-figure cyberheists across dozens of victims resulted from thieves cracking master passwords stolen from the password manager service ...
9 months ago Krebsonsecurity.com

Understand the pros and cons of enterprise password managers - To counter these threats, corporate IT security teams are turning to business-grade password managers to help centralize and streamline password and credential management. A password manager is a credential vault that gives IT teams a unified digital ...
1 year ago Techtarget.com

Fake LastPass password manager spotted on Apple's App Store - LastPass is warning that a fake copy of its app is being distributed on the Apple App Store, likely used as a phishing app to steal users' credentials. The fake app uses a similar name to the genuine app, a similar icon, and a red-themed interface ...
1 year ago Bleepingcomputer.com

Fake app impersonating LastPass spotted in Apple's App Store The Register - LastPass says a rogue application impersonating its popular password manager made it past Apple's gatekeepers and was listed in the iOS App Store for unsuspecting folks to download and install. A screenshot of the fake LastPass app in the Apple App ...
1 year ago Go.theregister.com

Security Breach at LastPass: Customer Data Taken - A recent security breach has exposed customer data from LastPass, a password manager. LastPass has confirmed that a third party was able to access some of the data, including users’ email addresses, hashed passwords, and other account and profile ...
2 years ago Hackread.com

LastPass Warns of Fake Repositories Targeting Its Customers - LastPass has issued a critical warning to its customers about the emergence of fake repositories impersonating the official LastPass GitHub repositories. These counterfeit repositories are being used by cybercriminals to distribute malicious code and ...
3 months ago Thehackernews.com

Timeline of the Latest LastPass Data Breaches - A Complete Overview - LastPass, a popular password management system, has been the target of malicious hackers several times in the last few years. In this article, we’ll take a look at the latest LastPass data breaches and what happened in each incident. ...
2 years ago Csoonline.com

LastPass Hikes Password Requirements to 12 Characters - Password-manager purveyor LastPass has announced it's setting new rules about the strength of customer passwords, with a new mandate that account master passwords include a minimum of 12 characters. A Jan. 2 blog post from LastPass senior principal ...
1 year ago Darkreading.com

Top 6 LastPass Alternatives for 2024 - LastPass is a popular choice for managing passwords and sensitive information for individuals and businesses. While the tool still enjoys global patronage, it's not a bad idea to consider other password managers that can serve as worthy alternatives ...
1 year ago Techrepublic.com

Cyberattackers Target LastPass Password Managers - Cybersecurity experts have observed a surge in cyberattacks targeting LastPass password managers, a critical tool used by millions to secure their digital identities. These attacks aim to exploit vulnerabilities in password management software to ...
2 months ago Darkreading.com

Got Now Suffers Security Breach After Acquisition of LastPass - Got Now, the parent company of password vault LastPass, recently suffered a massive security breach, resulting in malicious actors gaining access to LastPass user data. LastPass, a cross-platform password manager which is used as an authentication ...
2 years ago Thehackernews.com

LastPass fake password managers infect Mac users with malware - Cybercriminals are exploiting the popularity of LastPass by distributing fake password manager apps targeting Mac users. These counterfeit applications are designed to infect systems with malware, posing significant security risks. The fake apps ...
3 months ago Bleepingcomputer.com

AutoSpill attack steals credentials from Android password managers - Security researchers developed a new attack, which they named AutoSpill, to steal account credentials on Android during the autofill operation. In a presentation at the Black Hat Europe security conference, researchers from the International ...
2 years ago Bleepingcomputer.com

Stemming the Tide: Solving the Challenge of Password Reuse and Password-Stealing Malware - Password stealing malware is again rising with several attacks making the news cycle in recent months. A new password-stealing malware named Ov3r Stealer was discovered on Facebook Ads, spreading by way of fake job opportunities. Further analysis ...
1 year ago Cybersecurity-insiders.com