LastPass is warning users about a phishing campaign that uses fake security notices and a counterfeit DocuSign page to lure victims to malicious sites. The company says its systems were not compromised, and it advises users to report suspicious emails and change their master password if they entered credentials. #LastPass #DocuSign #Bitwarden #lastpasscompliance #bitwardencompliance
Keypoints
- Attackers are sending fake LastPass security notices to trick users.
- The emails use the sender address [email protected].
- Victims are redirected to a fake DocuSign website on lastpasscompliance[.]com.
- Similar phishing emails are also targeting Bitwarden users.
- LastPass says it was not compromised and urges users to report suspicious messages.