LastPass would like to alert our customers to a current phishing campaign that began today, November 8th. The phishing emails are coming from the email address “info@digitaalprint[.]be” with the subject line “Required information about your account.” The below image displays the body of the email and the “Confirm my information” button will take victims to a phishing site hosted at "authentication-lastpass[.]su." Of note, this domain and the body and the content of the email itself are similar to previous phishing campaigns in September of this year. Please remember that no one at LastPass will ever ask for your master password. Rest assured, we are working to have this domain taken down as soon as possible. Please take the appropriate precautions and as always, if you have any question if an email is legitimate, please submit it to abuse@lastpass.com.
Actual phishing site: “authentication-lastpass[.]su.”
Header information:
From: LastPass info@digitaalprint[.]be
Source IP: 204.90.71[.]225
Reply-to: null@digitaalprint[.]be
Subject: Required information about your account