/images/2023/03/03/logo-lastpass.png){kind=logo}
Helpful features like family profiles and a password generator
Compatible with lots of browsers, OS, and devices
LastPass excels with its ease-of-use and extensive features, but its history of breaches has us hesitating to recomend the product. It was hacked in two separate instances in late 2022.
As far as the actual service, LastPass has a host of features like a security dashboard and dark web monitoring, which serve as useful tools to anyone looking for increased security online. Our testing proved that it was easy to use, even though we've encountered some bugs in the past.
With a manageable price and integrated browser extensions, it’s up to you to decide if you can look past LastPass's security issues.
| Price | $3.00–$4.00/mo |
| Free version | Yes |
| Number of users | 1 - Unlimited |
| Compatibility | Windows, Linux, Android, iOS |
| Browser extensions | Chrome, Firefox, Edge, Safari, Opera |
| Password sharing | Yes |
| Encryption | AES-256 |
| Password generator | Yes |
| Password strength report | Yes |
| Autofill | Yes |
| Digital legacy | Yes |
| Cloud storage | Yes — 1 GB |
| Details | Get LastPass |
We put every password manager through vigorous hands-on testing by downloading the software to our own devices. We test how the product works on both mobile and desktop, evaluating how well we're able to save, share, and use passwords across a variety of situations.
By taking a fine-tooth comb through all available features and settings, we carefully compare each product using our proprietary grading rubric. The star ratings take into account price, features, extras like cloud storage and data breach alerts, plus looks at security and privacy features like encryption levels and past data breaches.
To learn more about how we test, check out our full testing methodology here.
We last tested LastPass on March 24, 2025.
Helpful features like family profiles and a password generator
Compatible with lots of browsers, OS, and devices
We found LastPass to be fairly easy to navigate and use. We installed the LastPass Chrome extension and iOS app onto our devices. Both versions provided checklists to teach you all the features and tour your vault.
/images/2025/03/24/lastpass_review_0325_refresh_tutorial_03.png)
For testing, we navigated to Amazon and opened the create account page. The LastPass icon popped up on several lines to autofill our information. It also suggested a strong password to use with our account.
/images/2024/11/01/lastpass_review_1124_refresh_19.png)
From our iPhone, we installed LastPass and enabled the extension in Safari. We tried to create an account with Walmart, and the LastPass extension popped up to let us know there are no matching credentials in our account. There was also the option to add a new item to our vault.
/images/2025/03/24/lastpass_review_0325_refresh_mobile_autofill.jpg)
Although the LastPass icon was convenient in these cases, we found it popping up when it wasn't needed. We went to save an image on Photopea and the LastPass icon blocked the image name cell. Luckily, LastPass does have a Never URLs section in its settings where you can add sites to whitelist.
/images/2024/11/01/lastpass_review_1124_refresh_18.png)
Overall, LastPass is largely easy to use and we liked the starter kit, which provides some extra guidance for those completely new to password managers.
LastPass ranges in price from $3.00–$4.00/mo. There's a free version along with a Premium plan and a Families plan.
The free version of LastPass comes with a surprising number of useful features like autofill capabilities and a password generator. This is great for anyone who doesn’t need to share their passwords with anyone else or use them across multiple devices.
If you do need a little more from LastPass, paid plans come with enhanced features like phone support and emergency access for family members who may have forgotten their password. The Premium plan is for one user but can be installed on unlimited devices. The Families plan can cover up to six users.
| Plan | Free | Premium | Families |
| Price | Free | $3.00/mo (billed annually) | $4.00/mo (billed annually) |
| Number of users | 1 | 1 | 6 |
| Number of devices | Unlimited devices within a type (desktop or mobile) | Unlimited | Unlimited |
| Password vault | |||
| Autofill | |||
| Password generator | |||
| Two-factor authentication | |||
| Encrypted storage | |||
| Security dashboard | |||
| Dark web monitoring | |||
| Emergency access | |||
| Personal support | |||
| Details | View plan | View plan | View plan |
LastPass prices are on par with Keeper and 1Password. All three services charge annually but like to advertise the products by what the annual price equates to monthly. For a truly transparent view of each of these, please look at the starting prices for several popular password managers:
LastPass: $3.00/mo (billed annually)
LastPass costs less than Dashlane's personal plans, but other password managers like NordPass and Bitwarden are cheaper.
It's worth noting that Keeper, 1Password, Dashlane, NordPass, and Bitwarden haven't been breached, while LastPass has suffered several security breaches.
Since its humble start as a password manager, LastPass has continued to expand its offerings to provide a number of features aimed at security. For example, the emergency access feature, one that allows you to will your password vault to someone upon your passing, is an especially useful feature as more of our lives move online.
Take a look at some of the other features and what they can offer.
Even though Netflix may be cracking down on password sharing, it doesn’t mean we won’t continue to share. LastPass has thought of this and created a safe and effective way for you to share passwords with friends, family, roommates, or colleagues.
/images/2025/03/24/lastpass_review_0325_refresh_item_sharing.png)
The Sharing Center within the LastPass dashboard allows you to send passwords to anyone while continuing to keep that information encrypted. It’s way better than pasting the Disney+ password into a text to your mom for the 15th time.
With the free plan, you can use one-to-one sharing, which allows you to share your passwords and saved items with one person at a time. With the paid plans, you can also use one-to-many sharing, which allows you to share your saved with multiple people.
If you’re an Apple person, you may be familiar with the password generator that comes standard as a part of iOS. LastPass also provides this service with its own proprietary password generator.
/images/2024/11/01/lastpass_review_1124_refresh_02.png)
As we tested the extension, the generator would pop up if we were creating a new account. Its also easily accessible from the LastPass extension if the generator doesn't pop up on its own.
When the browser extension is enabled, you can automatically create a secure password directly on a website. These unique combinations make for strong passwords and can help increase your security. LastPass will then save the new password to your vault.
The autofill feature in LastPass creates a profile of you with the information you want, like phone number, address, credit card info, and more. You can fill online forms by clicking the browser extension in your toolbar.
In addition to this being convenient, it also helps avoid keylogging, which is where everything you type is recorded.
From the Security Dashboard, you can find your Security score. This feature evaluates your passwords, password hygiene, and sharing practices and evaluates your score based on how you use passwords.
For instance, if you use the same password multiple times, your strength score is lowered because there are more chances to breach this password. If you use unique, complex passwords for all your accounts, you’ll end up with a high rating.
/images/2024/11/01/lastpass_review_1124_refresh_12.png)
Our score was lower because we had some repeated passwords and hadn't enabled multi-factor authentication yet. If you click through on the View passwords button, LastPass will clearly list the issues with your passwords along with a button to correct them.
Additionally, you’ll need to continue to monitor LastPass as it scans the web for data breaches. If your password appears in a breach, it’ll lower your score and suggest you change the password.
Digital legacy is a uniquely 21st-century problem. What do you do with a person’s online accounts when they pass away?
LastPass allows you to grants someone emergency access in case of a forgotten password. You can also grant temporary access or update specific folder permissions to share the passwords within and skip sharing your master password.
We tried this out by selecting the plus sign on the emergency access tab in our dashboard. We added our personal email address and were notified by LastPass that we can request access to the account in case of an emergency.
/images/2025/03/24/lastpass_review_0325_refresh_emergency_access.png)
You can also name heirs to receive access to your vault in the event of your passing. This can help families or loved ones who are trying to access bank accounts, medical information, emails, and other services.
Additional bonus features offered by LastPass for business and family accounts are:
/images/2024/11/01/lastpass_review_1124_refresh_14.png)
Since LastPass has such a robust free product offering, it’s more than likely the company is selling data to recoup profits lost. After reading the U.S. privacy policy listed on the website, it's pretty clear that’s exactly what’s happening. LastPass is even using aggregated data from other parts of the web to create a clearer picture of you for marketing purposes.
Under "How We Use Your Data and Legal Basis," the policy states your data is used to "identify prospects for marketing purposes."
The description reads, "Analyze our records to identify prospects as well as their presumed or identified needs or preferences and serve ads and other communications that may be of interest to you.” Identifying “prospects for marketing” means selling your data to marketers.
It’s also concerning that LastPass notes it can “Rectify or correct personal data about you that is inaccurate, incomplete or out-of-date” you provide along with data it collects from outside sources.
Why would a password manager need to “correct and enrich” your personal data? Why wouldn’t it just store your passwords and leave the rest of your identity alone?
These are the types of questions you should ask when looking at a product to which you give so much information. Since you’re sharing personal, financial, health, and other login details with LastPass, selling that information seems counterintuitive to the purpose of its service — keeping your data secure.
LastPass claims a significant amount of security certificates and advertises its Bug Bounty program in an effort to show customers how dedicated it is to security.
The most recent third-party security certificate was issued in July 2022, directly before the major hacks that stole source code and encrypted password vaults from LastPass’ servers.
It continues to undergo internal audits, but we'd feel more secure if it was audited by a third party, especially after the breaches.
Honestly, probably not. LastPass suffered two major security incidents in 2022 that left customers’ data exposed, with the last breach including encrypted password vaults. Inititally, LastPass didn't recommend any actions at all and just assured userse that the passwords stored with the service were secure.
The previous cybersecurity incident in August 2022 saw hackers getting away with some of LastPass’ source code.[1] Source code is the foundational structure, the DNA, of any software. Like DNA, if you alter part of it, you can alter the entire entity.
In March 2023, LastPass released an update stating that no threat actor activity had been seen since October 26, 2022. It also provided security bulletins with recommended actions for LastPass users. But with competitors like Keeper and NordPass having never been hacked, it’s probably safer to go with one of those services.
It’s worth noting that if you're a LastPass customer, changing your passwords may not be enough to protect your accounts. You should enable multi-factor authentication and update your privacy settings to keep accounts safe.
Two-factor (2FA) and multi-factor authentication (MFA) allow you to add extra layers of security to products that handle some pretty private data. This type of passwordless authentication can supplement the security holes found in password security.
LastPass takes advantage of this technology by using 2FA and allowing you to go deeper by enabling multi-factor authentication. LastPass has a proprietary authenticator but also allows for integration of other authenticators, such as biometric logins, which improve the security of 2FA.
/images/2025/03/24/lastpass_review_0325_refresh_mfa.png)
The least helpful aspect of LastPass is its customer service.
While you have to be subscribed to a paid tier like Premium or Family to access personal customer service, you’re still encouraged to sort through the self-help section before reaching out to the call center. Like most self-help sections of technical sites, finding answers to more obscure questions can be time-consuming and frustrating.
As you may have guessed, you’ll only get general suggestions on the self-help pages instead of direct answers to your questions. If you’re looking for a solution to a less common issue, you may find yourself searching for a while.
LastPass has added a chatbot that links to a live person if you can’t find what you’re looking for in self-help. When we tried to reach out to an agent, the chatbot let us know that no one was available and created a case for us.
/images/2024/11/01/lastpass_review_1124_refresh_15.png)
Considering there's nowhere listing the chat hours, we're not sure how usable this option actually is.
LastPass claims compatibility with a myriad of browsers, mobile devices, and operating systems. For web browsers in general, the two most recent versions work with LastPass. Anything older than that, and you’ll need to update your browser.
Keep in mind that free users are also limited to one device, so be sure to install it on a device that you use to log in to your accounts most often.
Operating systems and mobile apps
Browsers
Note that the LastPass for Safari extension has replaced the LastPass desktop app for macOS.
LastPass is a solid password manager but we don't blame you if you're offput by its history of data breaches. Here are some other password managers to consider that haven't been breached (as of this writing):
 |
|
|
|
| Star rating | |||
| Starting price | Starts at $1.49/mo (billed every two years) | Starts at $0.99/mo (billed annually) | Starts at $2.92/mo (billed annually) |
| Compatibility | Windows, macOS, Linux, iOS, Android, Chrome, Firefox, Edge, Safari, Opera | Windows, macOS, Linux, iOS, Android, Chromebook, Chrome, Firefox, Edge | Windows, macOS, Linux, iOS, Android, Chrome, Firefox, Edge, Safari, Brave, Opera |
| Autofill | |||
| Password sharing | |||
| Password generator | |||
| Digital legacy | |||
| Learn more | Get NordPass | Get Roboform | Get Keeper |
LastPass’ trustworthiness has come into question with two back-to-back breaches in August and October 2022. Competitors Keeper and 1Password both boast similar levels of security without data breaches or being hacked.
LastPass has encountered more security breaches than we’d like to see from a security provider. It also can become glitchy on devices like Apple Watches or with macOS updates.
Both Keeper and NordPass are top alternatives to LastPass. As of the date of publishing, neither service has suffered a hack or data breach.
While Google has a proprietary password manager built into Chrome, Google’s password manager isn’t safe enough to trust all your data to the service. A third-party service like the two we’ve mentioned will add another layer of security.
Yes, LastPass was hacked in August 2022, and that information was used to perform another, more expansive breach in October 2022. Among the data stolen were customers’ encrypted vaults and source code from LastPass itself.
Even if we could be 100% sure that LastPass fixed its security flaws and we knew changing our passwords in our vaults would keep our accounts safe, LastPass has suffered too many security incidents to feel like it's a good product.
The fact that the first security breach of 2022 happened a month after LastPass received its third-party audited security certificate is worrying. On top of that, the dicey privacy policy and aggregated collection of data feels out of place for a security-focused company.
That isn’t to say you shouldn’t use a password manager. They help keep everything organized so you don’t lose your passwords. If they contain features like a password generator, like LastPass does, then you have additional security with strong, unique passwords suggested and saved for you.
See how LastPass compares to more secure password manager options:
Helpful features like family profiles and a password generator
Compatible with lots of browsers, OS, and devices
/images/2023/04/26/best_password_managers_for_mac.jpg)
/images/2022/05/09/passwords-on-sticky-notes.jpg)
/images/2025/02/25/yubico_security_key_logo.jpg){kind=logo}
/images/2024/11/16/password_manager_review__1password_alternatives.jpg)
/images/2024/11/16/password_manager_review__roboform_altneratives.jpg)
/images/2024/11/15/hand_pointing_at_lock_sign_password._concept_of_log_in_safety_protecti_20n6C5X.jpg)
/images/2024/11/15/opera_gx_logo_on_white_background.jpg){kind=logo}
/images/2024/11/15/strong_password_for_cyber_security_high_protection_and_safety_for_logi_8Yy2nGC.jpg)
All About Cookies is an independent, advertising-supported website. Some of the offers that appear on this site are from third-party advertisers from which All About Cookies receives compensation. This compensation may impact how and where products appear on this site (including, for example, the order in which they appear).
All About Cookies does not include all financial or credit offers that might be available to consumers nor do we include all companies or all available products. Information is accurate as of the publishing date and has not been provided or endorsed by the advertiser.
The All About Cookies editorial team strives to provide accurate, in-depth information and reviews to help you, our reader, make online privacy decisions with confidence. Here's what you can expect from us:
All About Cookies is an independent, advertising-supported website. Some of the offers that appear on this site are from third-party advertisers from which All About Cookies receives compensation. This compensation may impact how and where products appear on this site (including, for example, the order in which they appear).
All About Cookies does not include all financial or credit offers that might be available to consumers nor do we include all companies or all available products. Information is accurate as of the publishing date and has not been provided or endorsed by the advertiser.
The All About Cookies editorial team strives to provide accurate, in-depth information and reviews to help you, our reader, make online privacy decisions with confidence. Here's what you can expect from us:
/authors/mary-james_allaboutcookies-author.jpg){kind=small}
/authors/steph-trejos-allaboutcookies-editor.jpg){kind=small}
/authors/catherine-mcnally-allaboutcookies-editor.jpg){kind=small}
/images/2023/03/03/logo-lastpass.png){kind=logo}
/authors/mary-james_allaboutcookies-author.jpg)
/authors/steph-trejos-allaboutcookies-editor.jpg)