You might have seen <a href="https://www.gartner.com/en/newsroom/press-releases/2023-03-28-gartner-unveils-top-8-cybersecurity-predictions-for-2023-2024">this shocking prediction from Gartner:</a> by 2027, 75% of employees will acquire, modify or create technology outside IT&rsquo;s visibility &ndash; up from 41% in 2022.&nbsp;
Your employees rely on more SaaS tools than ever and not all of them are on your radar. &nbsp; 
From cloud apps and browser extensions to AI tools, today&rsquo;s workplaces move fast. And when anyone can implement a new app with little more than a credit card and a dream, you can be sure that very few of them are thinking about access or credential management. Consider this:&nbsp;
<ul class="ul1" style="color: #000000;">
 <li class="li3" style="color: rgba(0, 0, 0, 0.85); margin: 0px;">Shadow IT and Shadow AI are expanding the attack surface, with unsanctioned tools introducing security gaps no one&rsquo;s monitoring.&nbsp;</li>
</ul>
<ul class="ul1" style="color: #000000;">
 <li class="li3" style="color: rgba(0, 0, 0, 0.85); margin: 0px;">App bloat is costing real money &mdash; small businesses now pay for an average of 134 unused applications, and large organizations pay for 473.&nbsp;</li>
</ul>
<ul class="ul1" style="color: #000000;">
 <li class="li3" style="color: rgba(0, 0, 0, 0.85); margin: 0px;">Sensitive data is slipping through the cracks, with 38% of employees admitting they&rsquo;ve shared work information with unauthorized AI tools.&nbsp;&nbsp;</li>
</ul>
<ul class="ul1" style="color: #000000;">
 <li class="li3" style="color: rgba(0, 0, 0, 0.85); margin: 0px;">Compliance is harder to maintain when there&rsquo;s no clear picture of who&rsquo;s accessing what, and from where.&nbsp;</li>
</ul>
Single sign-on (SSO) can help with your core apps-- the ones that you know about-- but it doesn&rsquo;t cover everything, especially those smaller, hidden apps. And for small and mid-sized businesses, controlling those can get expensive and time-consuming, fast.&nbsp;&nbsp;
That&rsquo;s where the security gaps start. Without a simple, customizable way to manage access, secure credentials and monitor app usage, it&rsquo;s easy to lose control. And that opens the door to risk from old accounts that still have access to sensitive info, to apps no one remembers signing up for.&nbsp;
It&rsquo;s no longer enough to secure passwords alone. Businesses need an approach to identity and access management that&rsquo;s as flexible, efficient, and user-friendly as the tools their employees actually use.&nbsp;
<div class="button-container"><a rel="noopener noreferrer" href="https://www.lastpass.com/resources/demo/password-and-identity-management" target="_blank"><button class="class lp-button--red-outline">Request a Demo</button></a></div>
<h2 class="p4" style="color: rgba(0, 0, 0, 0.85); margin: 0px 0px 10.7px;">What is Secure Access Experiences?&nbsp;&nbsp;</h2>
Secure Access Experiences is the LastPass answer to this growing access management crisis &mdash; an evolving approach designed to bring together essential capabilities into one intuitive experience. It helps you control who has access to what, based on your own policies &mdash; not just passwords. Whether your team is using approved tools or ones you didn&rsquo;t even know about, you&rsquo;ll get the visibility and control you need, all in one easy-to-use solution.&nbsp;
With Secure Access Experiences, you will be able to:&nbsp;
<ul class="ul1" style="color: #000000;">
 <li class="li3" style="color: rgba(0, 0, 0, 0.85); margin: 0px;">Log in with ease: Securely manage how your team stores and uses passwords. Support for passkeys makes logging in even faster and safer.&nbsp;&nbsp;</li>
</ul>
<ul class="ul1" style="color: #000000;">
 <li class="li3" style="color: rgba(0, 0, 0, 0.85); margin: 0px;">Control who gets access: Make sure the right people have access to the right apps, systems, and data&mdash;nothing more, nothing less. It&rsquo;s easy to set up and adjust as your business grows.&nbsp;&nbsp;</li>
</ul>
<ul class="ul1" style="color: #000000;">
 <li class="li3" style="color: rgba(0, 0, 0, 0.85); margin: 0px;">See what&rsquo;s happening: Know which apps your team is using, when, and how. Stay informed, spot issues early, and feel confident that everything&rsquo;s running smoothly.&nbsp;&nbsp;&nbsp;</li>
</ul>
<h2 class="p4" style="color: rgba(0, 0, 0, 0.85); margin: 0px 0px 10.7px;">Why do Secure Access Experiences matter?&nbsp;</h2>
As SaaS adoption grows and the lines between personal and professional tools blur, businesses need a smarter, simpler way to manage access &mdash; one that meets modern challenges head-on, without overwhelming teams or breaking the bank.&nbsp;&nbsp;
<ul class="ul1" style="color: #000000;">
 <li class="li3" style="color: rgba(0, 0, 0, 0.85); margin: 0px;">Grows with your business: As your business adds more tools, people, and locations, LastPass makes it easy to keep everything secure without slowing you down.&nbsp;</li>
</ul>
<ul class="ul1" style="color: #000000;">
 <li class="li3" style="color: rgba(0, 0, 0, 0.85); margin: 0px;">Easy to manage, easier on your budget: Control access to all your tools from one place. Less hassle for you, and no need to invest in multiple systems.&nbsp;</li>
</ul>
<ul class="ul1" style="color: #000000;">
 <li class="li3" style="color: rgba(0, 0, 0, 0.85); margin: 0px;">Provides better protection, fewer headaches: Keep your business safe with strong, simple security&mdash;and make it easier to meet industry requirements along the way.&nbsp;</li>
</ul>
<ul class="ul1" style="color: #000000;">
 <li class="li3" style="color: rgba(0, 0, 0, 0.85); margin: 0px;">Simple for your team to use: When it&rsquo;s easy to use, your team actually uses it. That means stronger habits, less risk, and happier employees.&nbsp;</li>
</ul>
<h2 class="p4" style="color: rgba(0, 0, 0, 0.85); margin: 0px 0px 10.7px;">It starts with SaaS Monitoring and SaaS Protect.&nbsp;</h2>
You can&rsquo;t control what you can&rsquo;t see. The first capability in Secure Access Experiences was&nbsp;SaaS Monitoring. Now, SaaS Protect is available so that customers can take action on that visibility.&nbsp;&nbsp;&nbsp;
<img src="https://cdn.lputil.com/-/media/2b6fd9bba92346a8a0fcedeca39eed06.png?h=824&amp;w=1250" >
<p class="Paragraph SCXW34306727 BCX0" paraid="543943140" paraeid="{d0faa4d5-50fe-4037-b03d-c38b664a1e52}{232}" style="color: windowtext; background-color: transparent; margin-right: 0px; margin-bottom: 10.6667px; margin-left: 0px; padding: 0px;">With SaaS Monitoring and SaaS Protect, business owners and IT admins can finally see what apps are being used across their organization, spot risky behavior, and make informed decisions about which apps to allow, restrict, or retire. helping them detect unapproved tools, spot Shadow IT and Shadow AI, and optimize application investments &mdash; all without the need to deploy extra agents, integrations, or complexity.
<p class="Paragraph SCXW34306727 BCX0" paraid="713470910" paraeid="{d0faa4d5-50fe-4037-b03d-c38b664a1e52}{238}" style="color: windowtext; background-color: transparent; margin-right: 0px; margin-bottom: 10.6667px; margin-left: 0px; padding: 0px;">The future of easier visibility and control is here. Start your Secure Access Experiences journey today.&nbsp;
<div class="button-container"><a rel="noopener noreferrer" href="https://www.lastpass.com/resources/demo/password-and-identity-management" target="_blank"><button class="class lp-button--red-outline">Request a Demo</button></a></div>

Introducing Secure Access Experiences: Controlling the Chaos of Modern App Sprawl

Secure Access Experiences is the LastPass answer to this growing access management crisis.

Get LastPass Free

Create and store secure passwords for yourself, your team or business.

Why LastPass?

Remember fewer passwords and log in faster with our browser extension.

How LastPass works

LastPass zero-knowledge security model keeps your data private even from us.

Security Architecture

Compare LastPass competitors, plans, and features in one place

Compare LastPass

Overview

Password management

Save and autofill

Password generator

Password sharing

Passkeys

Dark web monitoring

Security dashboard

Key Features

Free LastPass Premium trial, no credit card required.

Free LastPass Business trial, no credit card required.

Let our experts help you find the right plan and successfully deploy LastPass.

Sync passwords across all devices, monitor password health, data breaches and much more.

Personal

Premium password management for family or group of 6 people.

Families

Personal Plans

Password vault

Save & autofill

Automatic device sync

Emergency access

Personal password sharing

FOR INDIVIDUALS

30-day free LastPass Premium trial, no credit card required.

30-day free LastPass Families trial, no credit card required.

Limited to 1 device type and basic password management features.

Designed for businesses of all sizes, from small startups to enterprises.

Business

Simplify secure access straight from the browser with more admin control.

Business Max

For single teams just getting started with password management.

Teams

Designed to keep your clients' credentials protected and private.

Business Plans

User management

SaaS Monitoring

SaaS Protect

Business sharing

Multifactor Authentication

Integrations

Single Sign-on

Identity management

For admins

Marketing teams

Legal teams

HR teams

Business leaders

IT admins

Solutions by role

Case studies

Webinars

Product demos

Events

Trust Center

Compliance Center

Security architecture

LastPass University

Resource Center

Pricing

Join the LastPass Partner Program to provide even more value to your customers.

Partner program overview

Managed Service Providers

Resellers

Cloud marketplaces

Technology Alliance Partners

LastPass Partner Program

Grow new revenue streams by meeting customer's security needs.

Looking for help or interested in becoming a LastPass partner? Get in touch with our partner team.

Connect with trusted LastPass Partners to support your security needs.

Partners

Self-service library of resources and guides for all LastPass products.

Support Center

Community forum

System status

Help

Personal support for all LastPass’ subscribed customers.

Support

Get LastPass free

Submit sales inquiry

Request a demo

Find a partner

Contact sales

Log in

<div id="calloutcontent1">&nbsp;</div>
In the <a href="https://www.youtube.com/watch?v=s5jkei-utIQ&amp;list=PLsXN_jRonzye7EZC-aiKFxGyAFUlbBRop&amp;index=1">October episode of The Phish Bowl podcast</a>, my cohost Mike Kosak and I cover trends in the Asia-Pacific region. We&rsquo;re getting our passports stamped while traveling around the globe and providing a threat overview in rotating <a href="https://info.lastpass.com/threat-reports">regional reports</a>. Check it out for a deeper dive into the topics we covered in the podcast. 
In this episode, we share an update on the <a href="https://blog.lastpass.com/posts/joint-report-lastpass-guidepoint-security-infostealers">infostealer landscape</a> and some recent activity from China. For our special guest, we have a fascinating conversation with Katherine Manstead, Executive Director for Cyber Intelligence at Cyber CX, to talk about the cyber threat environment. 

<iframe width="783" height="440" src="https://www.youtube.com/embed/s5jkei-utIQ" title="Resilience and Reach: Cyber Threats Across APAC" frameborder="0" allow="accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture; web-share" referrerpolicy="strict-origin-when-cross-origin" allowfullscreen=""></iframe>

&nbsp;
Ransomware and infostealers everywhere
A key threat to private and public sector entities in <a href="https://blog.lastpass.com/posts/join-our-allegiance-roadshow-in-apac-to-strengthen-your-customers-cybersecurity-strategy">APAC</a> is the widespread use of <a href="https://blog.lastpass.com/posts/malware">malware</a>. Malware was involved in 83% of breaches in APAC last year, up from 58% from the year prior. 
A persistent ransomware threat is prevalent in the region with ransomware used in <a href="https://www.verizon.com/business/resources/reports/dbir/">over half of regional breaches</a>. Ransomware heavily targeted various sectors like Malaysia's manufacturing industry and Taiwan&rsquo;s financial sector. Australia was the most affected country with the greatest number of victims listed on ransomware data leak sites (DLS&rsquo;s), according to our <a href="https://info.lastpass.com/rs/129-MSQ-038/images/APAC-2025-Oct-Regional-Report-IR.pdf?version=1">latest APAC regional report</a>. 
<a href="https://blog.lastpass.com/posts/16-billion-credential-leak">Infostealer</a> malware remained prevalent, with Lumma accounting for the most observed malware in the region, followed by <a href="https://blog.lastpass.com/posts/attack-targeting-macs-via-github-pages">Atomic stealer</a> in the top ten malware strains targeting the region. In this episode, we shared an update on what the infostealer threat landscape looks like following the <a href="https://blog.lastpass.com/posts/dark-side-of-the-lumma">Lumma takedown in May</a>. As part of the threat intelligence team for LastPass, we closely monitor credential logs being sold on the <a href="https://blog.lastpass.com/posts/differences-between-deep-and-dark-web">dark web</a>, oftentimes stolen by infostealers, and the general stealer threat landscape. Lumma has bounced back after some initial disruption, and there&rsquo;s been a steady resurgence. Despite the decline in new infections, previously stolen Lumma logs continue to be resold on dark web marketplaces. 
Other infostealer families have since moved in to try to fill the gap. For a while, Acreed became the leading strain for <a href="https://blog.lastpass.com/posts/mcdonalds-ai-breach">credential theft</a> logs on Russian Market in particular, momentarily surpassing other established <a href="https://blog.lastpass.com/posts/infostealers-the-widespread-threat-from-information-stealing-malware">infostealers</a> for the activity we&rsquo;re monitoring. Rhadamanthys is also competing for market share, rising in popularity. Recently, Rhadamanthys took up almost half of the stolen credentials that we were monitoring. 
This follows a historical pattern where new <a href="https://blog.lastpass.com/posts/emotet">malware</a> quickly emerges to fill the vacuum left by disrupted operations. Looking forward, the cycle of infostealer development and disruption will likely continue, and the infostealer threat will remain pervasive. 
Chinese state-sponsored espionage 
Recent increased reporting on Chinese-backed cyberattacks, specifically around <a href="https://blog.lastpass.com/posts/packet-sniffing">espionage</a>, emphasize the continued threat both regionally and globally. Over 20 agencies from several countries recently signed onto an <a href="https://www.washingtonpost.com/technology/2025/08/27/fbi-advisory-china-hacking-expansion/">advisory warning about Chinese state-sponsored actors</a> targeting networks globally, including the telecommunications sector, transportation, government, military, and infrastructure. This is one of the most broadly endorsed advisories we&rsquo;ve seen. According to the advisory, Chinese hackers are using vulnerabilities in <a href="https://blog.lastpass.com/posts/fortify-your-tech-stack">routers</a> and weak credentials to gain initial access and collecting credentials to move laterally once they&rsquo;re inside networks. These tactics are commonly used by Chinese-backed threat actors. 
This warning comes on the heels of the Salt Typhoon/Volt Typhoon <a href="https://cyberscoop.com/top-fbi-cyber-official-salt-typhoon-largely-contained-in-telecom-networks/">telecommunications breach revelations</a> as part of an ongoing effort by Beijing to collect as much information as possible, track targets, and conduct espionage. China is primarily focused on establishing long-term access in these systems. The US government has previously called out Chinese government hackers for prepositioning themselves so that they&rsquo;re able to disrupt services or communications <a href="https://www.reuters.com/technology/cybersecurity/chinese-hackers-preparing-conflict-says-us-cyber-official-2024-11-22/">in the event of an active conflict</a>. A big part of this is also <a href="https://blog.lastpass.com/posts/are-mismanaged-secrets-putting-your-business-at-risk">intellectual property (IP) theft</a>. Mandiant recently released a <a href="https://therecord.media/china-linked-hackers-brickstorm-backdoor-ip">report highlighting espionage and IP theft</a> as part of a larger Chinese campaign attempting to steal information related to the trade conflict between the US and China. Beijing&rsquo;s cyber operations, especially around IP theft, typically correlate to their Five-Year Plans. These documents outline the sectors and types of business that Beijing considers a priority and therefore may be targeted. For instance, energy, telecoms, and technology are included in the latest 14th Five-Year Plan. This gives <a href="https://blog.lastpass.com/posts/the-importance-of-priority-intelligence-requirements-to-every-organization">intelligence analysts</a> a leg up on the sort of things they should be monitoring, and which industries should especially be concerned and have their cyber shields up as potential targets. Notably, China recently convened to determine the country&rsquo;s next development targets in its <a href="https://www.nytimes.com/2025/10/29/world/asia/trump-xi-china-industrial-plan.html">15th Five-Year Plan</a>, covering 2026-2030. 
Talking about how the private sector can be affected by espionage, Australian Security Intelligence Organisation (ASIO) and Australian Institute of Criminology&nbsp;published a report that puts a dollar figure on economic cost of espionage, including state-sponsored IP theft and response costs. The report found that espionage costs the country about <a href="https://therecord.media/espionage-costing-australia-8-billion">$8 billion ($12.5 billion AUD) per year</a>. That&rsquo;s just one country, so if we extrapolate that on a global scale, we can infer the massive cost that these <a href="https://blog.lastpass.com/posts/the-psychological-impact-of-cyber-attacks">cyberattacks</a> can have. 
A regional executive perspective: the cyber threat landscape is deteriorating 
We were fortunate to have Katherine Manstead from Cyber CX join us and provide her perspective on regional trends and look forward to 2026. As Katherine put it, &ldquo;The cyber threat landscape is deteriorating&hellip;It&rsquo;s worse today than it was yesterday, and it will be worse tomorrow.&rdquo; This trend is expected to continue over 2026. We took a closer look at what&rsquo;s driving this deteriorating environment, from disruptions in the cybercriminal ecosystem to emboldened nation-state activities. 
<ul>
 <li>Firstly, law enforcement takedowns and uncertainty amongst <a href="https://blog.lastpass.com/posts/ransomware">ransomware groups</a> have driven turbulence and volatility in the cybercrime world. </li>
 <li>The rise of ideologically motivated hacktivists has also been a concerning evolution. Katherine noted she has seen hundreds of incidents impacting <a href="https://blog.lastpass.com/posts/why-small-businesses-are-a-target-for-cybersecurity-attacks">hundreds of organizations</a> in Australia and New Zealand, sometimes targeting <a href="https://blog.lastpass.com/posts/nerc-cip-compliance">critical infrastructure</a> or SMBs. While this activity generally falls short of being disruptive, the reputational impacts of cyber incidents can be acute for organizations. </li>
 <li>The commodification of cybercrime is enabling lower barriers to entry for malicious activities and enabling <a href="https://blog.lastpass.com/posts/examining-the-differences-between-hackers-malware-and-data-breaches">hackers</a> to collaborate and improve their area of expertise. <a href="https://blog.lastpass.com/posts/ai-driven-attacks">AI makes this even more effective</a>, with cybercrime becoming easier and cheaper.</li>
 <li>State-backed sabotage is now normalized in international relations. There are now more authoritarian-leaning governments that are incorporating malicious cyber activities into their toolkits, like disruption, espionage, and tracking dissidents. Foreign governments are fundamentally undeterred, and countries like Russia, China, North Korea, and Iran are becoming more risk tolerant and reckless in how they use <a href="https://www.lastpass.com/security/what-is-a-cyberattack">malicious cyber activities</a>. </li>
</ul>
Australian Signals Directorate released their Annual Cyber Threat Report 
Despite these challenges across the threat landscape, Katherine remains optimistic about some of the key takeaways from the recently published <a href="https://www.cyber.gov.au/about-us/view-all-content/reports-and-statistics/annual-cyber-threat-report-2024-2025">Australian Signals Directorate&rsquo;s Annual Cyber Threat report</a>. The forward leaning public-private sector engagement that the Australian government is doing is already having a positive impact. More organizations and individuals are reporting cybercrime and incidents to ASD. According to the report, on average, a cybercrime incident is <a href="https://blog.lastpass.com/posts/acsc-2024-report-implications">reported to ASD</a> every 6 minutes. Conversely, ASD is doing more proactive outreach for <a href="https://blog.lastpass.com/posts/the-growing-threat-of-water-supply-hacks">critical infrastructure</a> and across the private sector to give those companies a heads up about <a href="https://blog.lastpass.com/posts/2025-cybersecurity-trends">malicious cyber activity</a> on their networks. 
Another takeaway from the ASD report is the rise of compromised accounts as a common tactic used by cybercriminals and nation-state actors alike to enable attacks. About 30% of incidents started with compromised accounts. Katherine points out this is part of an underlying trend where <a href="https://blog.lastpass.com/posts/phishing">phishing</a>, <a href="https://blog.lastpass.com/posts/social-engineering">social engineering</a> are declining as the primary initial access vectors and being supplanted by the rise of <a href="https://blog.lastpass.com/posts/the-compromised-credentials-crisis-a-challenge-plaguing-the-cybersecurity-industry">compromised credentials</a>.
What should businesses be doing to protect themselves from ransomware attacks and data breaches? 
Given the high number of ransomware attacks and data breaches in the region, Katherine shared some tips on how businesses can protect themselves against ransomware threats. From conducting research for our regional report, we found that <a href="https://blog.lastpass.com/posts/what-is-the-role-for-identity-as-businesses-in-apac-transform-to-a-new-normal-way-of-working">APAC victims</a> listed on ransomware data leak sites (DLSs) were primarily <a href="https://blog.lastpass.com/posts/lastpass-report-strategies-for-smb-leaders-facing-the-cybersecurity-disconnect">small and medium sized businesses</a> (SMBs), indicating attackers&rsquo; focus on smaller enterprises that have historically weaker security infrastructure and lower cybersecurity budgets compared to larger, more well-resourced enterprises. Ransomware attacks are no longer just a big business issue &ndash; they&rsquo;re an everyone problem. 
<ul>
 <li>Protecting your <a href="https://blog.lastpass.com/posts/supply-chain-attacks">supply chain</a>, like IT providers and contractors, is key. Oftentimes <a href="https://blog.lastpass.com/posts/five-ways-to-build-your-smb-cybersecurity-strategy">SMBs</a> are the starting point for data theft extortion and ransomware attacks. Hackers can gain access to third-party vendors and then pivot up or downstream. </li>
 <li>You can&rsquo;t protect what you&rsquo;re not monitoring. There continue to be gaps globally, and especially in Australia in the SMB market. </li>
 <li>Finally, Katherine called out the need for a collaborative, wholistic approach to defending against these threats. As she put it, &ldquo;We&rsquo;re only as safe as the broader ecosystem.&rdquo; Looking across the region, some countries that were less digitally mature are increasingly being targeted by cyber extortion groups. As certain countries become more resilient, cybercrime doesn&rsquo;t go away, it just shifts. More digitally mature partners across the region should play a supportive role to make cyberspace safer for all. </li>
</ul>
Listen to the full episode&nbsp;&nbsp;
Catch the full episode and additional resources for more cyber threat insights from the LastPass Threat Intelligence, Mitigations, and Escalations (TIME) Team. 
<ul>
 <li>Listen to the full Episode 3 of The Phish Bowl wherever you get your podcasts:&nbsp;&nbsp;
 <ul>
 <li><a rel="noopener noreferrer" href="https://www.youtube.com/@LastPass/podcasts" target="_blank">YouTube</a>&nbsp;</li>
 <li><a rel="noopener noreferrer" href="https://open.spotify.com/show/1TQiFDk9acmkfp1sTFN1yX" target="_blank">Spotify</a>&nbsp;</li>
 <li><a rel="noopener noreferrer" href="https://podcasts.apple.com/podcast/id1828511920" target="_blank">Apple</a>&nbsp;</li>
 </ul>
 </li>
 <li>Subscribe for monthly threat intel deep dives.&nbsp;</li>
 <li>Access LastPass's <a href="https://info.lastpass.com/threat-reports">Regional Report</a> for detailed analysis of recent Asia-Pacific trends and activity.&nbsp;</li>
 <li>Check out the <a rel="noopener noreferrer" href="https://blog.lastpass.com/categories/lastpass-labs" target="_blank">LastPass Labs blog</a> for more insights.&nbsp;</li>
</ul>
We&rsquo;ll be back next month to talk about threat activity and trends in Europe, along with a corresponding regional report!

Resilience and Reach: Cyber Threats across APAC in The Phish Bowl

FAQs: Phish Bowl Podcast APAC

The October episode of The Phish Bowl podcast covers trends in the Asia-Pacific region. In this episode, we share an update on the infostealer landscape and some recent activity from China. For our special guest, we have a fascinating conversation with Katherine Manstead, Executive Director for Cyber Intelligence at Cyber CX, to talk about the cyber threat environment.

Resilience and Reach: Cyber Threats Across APAC in The Phish Bowl 

7 best password managers for mobile (iPhone and Android) in 2025

FAQs about mobile password managers

Compare the 7 best password managers for iPhone and Android in 2025. Find mobile apps with biometric login, offline access, cross-device sync, and autofill that works in all your apps. 

I have been using LastPass for the last two and a half years, daily, and this is the most reliable password manager I have used to date... Over the last two and a half years of my experience, I have never seen LastPass being down or having any kind of issue while being implemented...In fact, in my organization, it is mandatory to use LastPass as it is the most secure and most trusted platform. We even use LastPass for generating passwords...

The complete guide to resetting your Samsung tablet password in 2025

Reset is easy if you remember your Samsung tablet password. Hint: Look in Settings under Screen lock type to change your password.
&nbsp;
Have a newer Samsung tablet (One UI 6.1 and higher)? You have two options to reset if you&rsquo;ve forgotten your password: (a) &ldquo;Reset with previous screen lock&rdquo; or (b) perform a remote factory reset with Samsung SmartThings Find.&nbsp; &nbsp;
&nbsp;
For older Samsung tablets, your best bet is a factory reset via Recovery Mode if you&rsquo;ve forgotten your password.
&nbsp;
A soft reset or forced restart doesn&rsquo;t erase all your data, but a factory reset does.
&nbsp;
Back up your data before a factory reset to Samsung Cloud, Google Drive, or LastPass.&nbsp;

Key takeaways: How to reset Samsung tablet password

FAQs: How to reset your Samsung tablet password

Whether you remember your password (or not), we’re going to show you the exact steps to reset your Samsung tablet password. 

The Complete Guide to Resetting Your Samsung Tablet Password in 2025 

7 best affordable password managers for SMBs in 2025

FAQs about affordable password managers for small businesses

Find the best affordable password managers for small businesses in 2025. Compare 7 top options including LastPass, Bitwarden, and more to secure your team.

7 Best Affordable Password Managers for Small Businesses in 2025 

What are honeywords and why do attackers hate them

The idea of using honeywords (fake passwords) was invented nearly a decade ago. If you're reading this, you're more clued in than most people.&nbsp;
The earliest honeyword generation techniques were invented by security experts Ari Juels and Ronald Rivest, but attackers managed to outwit them.
Heuristics, meet metaheuristics. The next generation of tactics that go beyond what Jules and Rivest imagined.&nbsp;
"Bernoulli honeywords" may sound like the title of an Italian love poem, but most people don't know they're a defense that makes everything attackers know about you useless.&nbsp;
Honeywords protect you on the server side (behind the scenes). With credential attacks exploding, discover how LastPass protects you at your end (client-side, on your device).&nbsp;

Key takeaways: honeywords and AI detection

Honeywords are cleverly crafted decoys stored alongside real passwords in a secure system.  Learn how LastPass keeps you safe. 

Will 2025 Be the Year You Learn What Honeywords Are, and Why Attackers Hate Them? 

“People are experimenting with AI tools like OpenAI and Canva. We don’t want to block innovation, but we do want to guide it safely. LastPass is smart, secure, and it just works.” 

Prompt injection attacks in 2025

Security researcher Johann Rehberger is the leading voice warning about AI prompt injections.&nbsp;
The age of "Prompt Injection 2.0" has arrived, combining natural language tactics with new multimodal exploits to create a hybrid menace for AI.&nbsp;
The real nightmare is autonomous propagation, which can infect an entire AI system without human input.&nbsp;
CaMel isn't a hump-backed mammal. It's how Google DeepMind is turning prompt injection defense into a science.&nbsp;
Access control via LastPass SaaS Monitoring + SaaS Protect serves as a frontline defense, blocking risky apps and reducing the attack surface.&nbsp;

Key takeaways: Prompt injection

FAQs: Prompt injection

The age of “Prompt Injection 2.0” has arrived, combining natural language tactics with new multimodal exploits to create a hybrid menace for AI. 

Prompt Injection Attacks in 2025: When Your Favorite AI Chatbot Listens to the Wrong Instructions

7 best password managers for non-technical teams in 2025

FAQs about password managers for non-technical teams

. LastPass stands out with its user-friendly interface and top-notch security for non-technical teams.

7 Best Password Managers for Non-Technical Teams in 2025

Possible CryptoChameleon Social Engineering Campaign Targeting LastPass Customers, Crypto Exchange Customers, Passkeys, and More

LastPass would like to alert our customers of a current phishing campaign that began in mid-October targeting our users, which has been associated with crypto theft.

6 best 1Password alternatives in 2025

FAQs about 1Password alternatives

LastPass is a great contender because it creates strong passwords that keep your accounts secure while keeping everything simple and straightforward.

6 Best 1Password Alternatives in 2025

What is browser hijacking and why your search results can’t be trusted

The first widely recognized browser hijacker was CoolWebSearch,&nbsp;which compromised 8.2% of computers worldwide.&nbsp;
You open a tab and search, but someone else decides what you see. Browser hijackers can track your every move, reroute your searches, and flood your screen with unwanted content.&nbsp;Discover what's really controlling your search results.&nbsp;
Strange browser settings, slow page loads, and frequent redirects to unfamiliar sites? You may have a browser hijacker on your hands.&nbsp;
You've spotted the signs. Now, the fix starts with running a reputable antivirus (but doesn't end there).&nbsp;
LastPass complements tools like TotalAV to give you a layered defense. Uncover the tools you need to fight back against browser hijackers.&nbsp;

Key takeaways: Browser hijacker

FAQs: How to remove browser hijackers

Browser hijackers can track your every move, reroute your searches, and flood your screen with unwanted content.

What Is Browser Hijacking and Why Your Search Results Can’t Be Trusted

Packet sniffing in cyber espionage 

Packet sniffing is essentially eavesdropping, which can be weaponized by the most dangerous threat groups in the world.&nbsp;
Packet sniffing can be legal -- sometimes.&nbsp;
The new foot soldiers of cyber espionage are getting younger.&nbsp;
Protecting against packet sniffing takes a multi-layered, defense-in-depth approach.
Along with complementary industry tools, LastPass Business Max can help stop rogue logins and protect your most sensitive data.&nbsp;

Key takeaways: Packet sniffing

Packet sniffing – the silent interception of network data – is increasingly leveraged in cyber spying, especially for stealing credentials. 

Undercover Bytes: Packet Sniffing in Cyber Espionage 

One chapter in the saga of infostealer malware has ended&mdash;at least for now&mdash;after a global law enforcement takedown of Lumma Stealer in mid-May. US, European, and Japanese authorities, with the help of tech companies including Microsoft and Cloudflare, took down, suspended, and blocked approximately 2,300 malicious domains that made up part of the infostealer&rsquo;s backbone. The FBI also seized domains that served as login panels allowing other criminals to access and use the infostealer. Although, this seizure is intended to effectively prevent criminals from being able to access Lumma to compromise computers and steal data, the overall stealer threat will remain prevalent for the foreseeable future. 
(Interested in learning more about the infostealer threat outlook? Read the LastPass TIME team&rsquo;s threat predictions and analysis on <a href="https://blog.lastpass.com/posts/2025-cybersecurity-trends">what direction infostealers and other threats are heading</a>.) 
<h2>What is Lumma?</h2>
 
Lumma Stealer, also known as LummaC2, dominated the expanding stealer market with significant campaigns since it emerged as early as late 2022. Since its initial release, Lumma&rsquo;s developers have released multiple upgraded versions of the software. Before the malware-as-a-service (MaaS) platform was dismantled, the FBI linked Lumma to around <a href="https://www.malwarebytes.com/blog/news/2025/05/lumma-information-stealer-infrastructure-disrupted">10 million infections</a> globally. Lumma&rsquo;s follow-on attacks involving stealing credentials, cryptocurrency data, and credit card information have resulted in an estimated <a href="https://cyberscoop.com/lumma-infostealer-widespread-victims/">$36.5 million USD</a> in credit card theft in 2023. The malware hit individuals and a wide range of industries, including Fortune 500 companies, airlines, universities, banks, and hospitals. 
What makes this stealer particularly effective is that it continues to evolve to bypass security layers even as defenders are responding to the threat. On top of grabbing browser-stored passwords and cookies, it&rsquo;s also capable of extracting autofill data, email credentials, File Transfer Protocol (FTP) data, and two-factor authentication tokens and backup codes. Using its MaaS platform, its creators sold access to the malware on multiple underground markets and platforms like Telegram. 
<h2>What comes next?</h2>
 
This takedown is a major win for law enforcement and will help disrupt the initial access broker ecosystem in the near term. However, this is an ecosystem that has demonstrated its resilience again and again. The number of existing infostealer families, the open access to numerous source codes of previous infostealers, and the constant demand create a lucrative environment with very low barriers to entry. Given the resiliency of this market, other infostealer will likely quickly step in and fill in the gaps left after the Lumma takedown. 
A similar pattern previously played out with other similar takedowns. On October 28, 2024, Operation Magnus disrupted the RedLine and META infostealers. RedLine was a significant stealer last year up until the takedown, after which Lumma grew in popularity and took over a portion of the market share previously held by RedLine. Redline infected 9.9 million hosts, or 43% of all infostealer infections observed by Flashpoint in 2024. The next four most-prolific infostealers in 2024, including RisePro, SteaC, Lumma Stealer, and Meta Stealer, infected a <a href="https://cyberscoop.com/infostealers-cybercrime-surged-2024-flashpoint/">combined 7 million hosts</a>. 
We expect to see something similar following the Lumma Stealer takedown operation. The disruption effect following takedown is real, but there are still some new infections and logs for sale that were likely stolen before the infrastructure was taken down. Additionally, just because Lumma&rsquo;s infrastructure was dismantled, a lot of the data it stole likely continues to live on the dark web&mdash;thanks to the cybercriminal ecosystem that resells this information. Additionally, <a href="https://blog.checkpoint.com/security/lumma-infostealer-down-but-not-out/">CheckPoint</a> reported Lumma&rsquo;s developers are already trying to rebuild and restart their operations, which may or may not be successful.&nbsp;As SpyCloud&rsquo;s <a href="https://www.linkedin.com/posts/thilligoss_lummatakedown-lummareallynowork-stealc-activity-7332888157480198146-u94p">Trevor Hilligoss shared</a>, daily new Lumma infections have trended downward following the takedown but not as much as expected. Continued monitoring will be necessary to determine the takedown&rsquo;s impact. 
Long-standing groups such as Vidar and Stealc are good examples of this, but other newer families, such as Acreed, will also be well positioned to increase their market share. <a href="https://www.bleepingcomputer.com/news/security/russian-market-emerges-as-a-go-to-shop-for-stolen-credentials/">ReliaQuests</a> already reported Acreed is rapidly gaining traction following the Lumma takedown. <a href="https://webz.io/dwp/acreed-infostealer-everything-we-know-so-far/">Over 4,000 logs</a> stolen by Acreed were reportedly uploaded to the Russian Market within its first week of operations.&nbsp;Nexus has also gained some traction over the last week in Lumma&rsquo;s absence. Further, former affiliates and/or administrators associated with Lumma itself may split off to create their own offerings.

<img src="https://cdn.lputil.com/-/media/ffef2d4ef9d544babc2169a6d0274059.jpg?h=310&amp;w=624" >&nbsp;
Daily new LummaC2 infections (Source: Trevor Hilligoss)
<h2>How to protect yourself against infostealers</h2>
The threat from infostealers will remain very real for the foreseeable future and continue to adapt. Oftentimes, stealers are used in indiscriminate campaigns. Additionally, the sheer volume of data that has been dumped on the internet is immense. That means anyone is fair game and should take action to protect themselves following that assumption that they could be targeted. 
<ul>
 <li>Use strong, unique passwords for every account. This will prevent credential stuffing attacks, which is a common tactic where threat actors insert stolen usernames and passwords. That way, if one password is exposed, it won&rsquo;t give access to all your other accounts where you reuse the same password. Also, consider using a password manager to securely and conveniently store them.</li>
 <li>Enable MFA on your accounts. While this measure isn&rsquo;t failproof on its own, it adds an additional layer of defense and makes you a harder target.</li>
 <li>Be on guard for phishing attempts. Infostealers often spread through phishing emails and malicious downloads. </li>
 <li>Check HaveIBeenPwned to monitor potential exposure if you&rsquo;re worried you may have been infected by an infostealer. </li>
</ul>

What the Lumma stealer takedown means for the infostealer market and your personal data

Lumma Stealer, also known as LummaC2, dominated the expanding stealer market with significant campaigns since it emerged as early as late 2022

Dark Side of the Lumma: What the Lumma stealer takedown means for the infostealer market and your personal data

Passkey vs Password: Which is More Secure? | LastPass

Explore the differences between passkeys and passwords. Learn how LastPass enhances security and simplifies access with advanced authentication methods.

Blog

Blog

Recent

News & Insights

Cybersecurity

Product Tutorials

Threat Intel

Product Updates

Tips And Tricks