-
Something changed to Autofill in the day or so?
Now having LastPass show in strange place like Excel Online sheet names and other boxes for several other site where it didn't before. Also Edge isn't always filling with the login options, instead seeing 'time for a refresh' message. multiple machines.
-
New issue with logging into my company's domain as an external user
I work at a company that has a customer facing website. My regular work has me acting as users of our website. (logging in as a customer, not with my credentials) Since an update a few weeks ago, when I go to the page where I act as an external user, LastPass has started inserting my own user name. The process used to be…
-
Is LastPass planning to support Salesforce's upcoming security changes?
Salesforce is making several updates over the next few weeks to strengthen their security, which includes additional multifactor prompts if certain security-related attributes are not in place and shared via SAML. (https://help.salesforce.com/s/articleView?id=005317465&type=1) Other identity providers such as Okta, Duo,…
-
I want to downgrade from business to individual
Hi Support, I would like to change my LastPass Business subscription to an individual LastPass Premium plan at the end of my current billing term. Please disable auto renewal for the Business plan and advise the steps needed to convert my existing vault and account to Premium. I would also appreciate confirmation about…
-
What’s the best way to configure Advanced MFA or Workstation MFA for employees?
I’m exploring Advanced MFA and Workstation MFA to strengthen security for our organization. From what I’ve read, Advanced MFA can protect vault logins, SSO apps, VPNs, and even includes contextual policies like geofencing. Workstation MFA adds a second layer of authentication when employees log into Windows or macOS…
-
Here are five immediate steps every growing business should take
No organization is breach‑proof, but resilient organizations recover quickly, minimize downtime, and avoid ransom payments because backups are robust, incident playbooks are practiced, and identity is locked down. Make sure you follow this checklist to ensure your business remains secure: Implement phishing-resistant…
-
What is digital squatting?
Digital squatting includes typosquatting, combosquatting, TLD abuse, and homograph attacks. These deceptive tactics all aim to capitalize on established brands and differ in their specific techniques. Digital squatting and phishing are often treated as separate threat vectors, but they are deeply intertwined. Digital…
-
What practical steps can SMBs take to protect themselves from digital squatting scams?
Here are a few simple steps SMBs can take to better protect themselves against these threats: Register obvious variations of your domain (cheap and effective). Enable MFA everywhere (cuts off most credential theft). Use email security tools that check for lookalike domains. Tools like DNS firewalls can automatically block…
-
Three LastPass Admin Policies to Enable Today
Prohibit Sharing Except for Shared Folders LastPass offers password sharing to help employees securely and conveniently share logins with others inside and outside the organization. By default, individuals can share items one-on-one, or teams can easily collaborate and access shared accounts by setting up shared folders.…
-
Human identities vs bot identities vs AI agents: What’s the difference?
Here's the short: Human identities are non-deterministic (behavior changes based on context) and often authorized through RBAC, ABAC, or other identity governance controls. Bot identities are machine accounts that exhibit deterministic behavior. They operate under pre-defined permissions, which means specific inputs result…