īelow are further technical details on this campaign to assist in threat hunting. Please take the appropriate precautions and as always, if you have any question if an email is legitimate, please submit it to. We are working to have this domain taken down as soon as possible. Please remember that no one at LastPass will ever ask for your master password. We have included an image of the email below for reference. When scanned, the QR code will take victims to a phishing site hosted at “identity-lastpasssu”. If you find it is out of date by more than a day or two, please contact the maintainer(s) and let them know the package is no longer updating correctly. Please Note: This is an automatically updated package. In this most recent attempt, in a first for these threat actors, they are directing victims to the phishing site via a QR code. LastPass is a password manager that makes web browsing easier and more secure. The phishing emails are coming from the email address >” with the subject line “LastPass: Required action needed regarding your account.” Technical analysis indicates this campaign is almost certainly from the same threat actors that fraudulently misused our logo and brand earlier this month. LastPass would like to alert our customers to a current phishing campaign that began yesterday, December 11th.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |