All About Cookies is an independent, advertising-supported website. Some of the offers that appear on this site are from third-party advertisers from which All About Cookies receives compensation. This compensation may impact how and where products appear on this site (including, for example, the order in which they appear).
All About Cookies does not include all financial or credit offers that might be available to consumers nor do we include all companies or all available products. Information is accurate as of the publishing date and has not been provided or endorsed by the advertiser.
The All About Cookies editorial team strives to provide accurate, in-depth information and reviews to help you, our reader, make online privacy decisions with confidence. Here's what you can expect from us:
/images/2023/03/03/logo-lastpass.png){kind=logo}
User-friendly way to securely store and organize your passwords
Compatible with lots of browsers, OS, and devices
All About Cookies is an independent, advertising-supported website. Some of the offers that appear on this site are from third-party advertisers from which All About Cookies receives compensation. This compensation may impact how and where products appear on this site (including, for example, the order in which they appear).
All About Cookies does not include all financial or credit offers that might be available to consumers nor do we include all companies or all available products. Information is accurate as of the publishing date and has not been provided or endorsed by the advertiser.
The All About Cookies editorial team strives to provide accurate, in-depth information and reviews to help you, our reader, make online privacy decisions with confidence. Here's what you can expect from us:
LastPass provides everything you need from a password manager, but we can't recommend it due to its history of data breaches. Most recently, LastPass was hacked in two separate instances in late 2022.
LastPass has all the password manager standard features, like autofill and form-filling options, a customizable password generator, and easy password sharing. You'll also receive premium options like dark web monitoring and digital legacy.
Although LastPass has a user-friendly interface and extensive features, it’s up to you to decide if you can look past LastPass's security issues.
Paid plan is required for personal customer support
| Price | $3.00–$4.00/mo |
| Free version | Yes |
| Number of users | 1-6 |
| Compatibility | Android, iOS |
| Browser extensions | Chrome, Firefox, Edge, Safari, Opera |
| Password sharing | Yes |
| Encryption | AES-256 |
| Password generator | Yes |
| Password strength report | Yes |
| Autofill | Yes |
| Digital legacy | Yes |
| Cloud storage | Yes — 1 GB |
| Details | Get LastPass |
We put every password manager through vigorous hands-on testing by downloading the software to our own devices. We test how the product works on both mobile and desktop, evaluating how well we're able to save, share, and use passwords across a variety of situations.
By taking a fine-tooth comb through all available features and settings, we carefully compare each product using our proprietary grading rubric. The star ratings take into account price, features, extras like cloud storage and data breach alerts, plus looks at security and privacy features like encryption levels and past data breaches.
To learn more about how we test, check out our full testing methodology here.
#1 ranked password manager with a strong history of security
Trusted Nord name backed by best-in-class encryption practices
Grab NordPass on its own or opt for a fully-featured security bundle
We found LastPass to be fairly easy to navigate and use. We installed the LastPass Chrome extension and iOS app onto our devices. Both versions provided checklists to teach you all the features and tour your password vault.
/images/2025/03/24/lastpass_review_0325_refresh_tutorial_03.png)
We tested autofill by opening Amazon's create account page. The LastPass icon popped up on several lines to autofill our information. It also suggested a strong password to use with our account.
/images/2024/11/01/lastpass_review_1124_refresh_19.png)
From our iPhone, we installed LastPass and enabled the extension in Safari. We tried to create an account with Walmart, and the LastPass extension popped up to let us know there are no matching credentials in our account. There was also the option to add a new item to our vault.
/images/2025/03/24/lastpass_review_0325_refresh_mobile_autofill.jpg)
Although the LastPass icon was convenient in these cases, it also popped up when it wasn't needed. We went to save an image on Photopea, and the LastPass icon blocked the image name cell. Luckily, LastPass does have a Never URLs section in its settings where you can add sites to the allowlist.
/images/2024/11/01/lastpass_review_1124_refresh_18.png)
Overall, LastPass is largely easy to use and we liked the starter kit, which provides some extra guidance for those completely new to password managers. Although we hesitate to recommend it over other password managers that haven't been breached, the password manager itself largely works well.
LastPass ranges in price from $3.00–$4.00/mo. There's a free version along with a Premium plan and a Families plan.
The free version of LastPass comes with a surprising number of useful features like autofill capabilities and a password generator. This is great for anyone who doesn’t need to share their passwords with anyone else or use them across multiple devices.
If you do need a little more from LastPass, paid plans come with enhanced features like phone support and emergency access for family members who may have forgotten their password. The Premium plan is for one user but can be installed on unlimited devices. The Families plan can cover up to six users.
| Plan | Free | Premium | Families |
| Price | Free | $3.00/mo | $4.00/mo |
| Number of users | 1 | 1 | 6 |
| Number of devices | Unlimited devices within a type (desktop or mobile) | Unlimited | Unlimited |
| Password vault | |||
| Autofill | |||
| Password generator | |||
| Two-factor authentication | |||
| Encrypted storage | |||
| Security dashboard | |||
| Dark web monitoring | |||
| Emergency access | |||
| Personal support | |||
| Details | View plan | View plan | View plan |
LastPass prices are on par with Keeper and 1Password. All three services charge annually but like to advertise the products by what the annual price equates to monthly. Here are the starting prices for several popular password managers:
LastPass costs less than Keeper's personal plans, but other password managers like NordPass can be cheaper. But Keeper, 1Password, Dashlane, and NordPass haven't been breached, while LastPass has suffered several security breaches.
Since its humble start as a password manager, LastPass has continued to expand its offerings to provide a number of features aimed at security. For example, the emergency access feature, one that allows you to will your password vault to someone upon your passing, is an especially useful feature as more of our lives move online.
We'll break down LastPass's major features and how well they worked for us.
LastPass offers several options to import your previously saved credentials. You can import from browsers like Chrome and Firefox, other password managers like Dashlane and 1Password, or just directly from a CSV.
/images/2025/07/23/lastpass_review_0325_refresh_import_01.png)
We selected RoboForm, which has the test vault we would be importing. LastPass provides step-by-step instructions on how to export from RoboForm, which is handy for any new password manager users.
/images/2025/07/23/lastpass_review_0325_refresh_import_02.png)
LastPass imported all of our credentials without issue. Every line item was in the correct column.
/images/2025/07/23/lastpass_review_0325_refresh_import_03.png)
You can find the import and export feature by selecting Advanced Options at the bottom left of your dashboard.
Even though Netflix may be cracking down on password sharing, it doesn’t mean we won’t continue to share. LastPass has thought of this and created a safe and effective way for you to share passwords with friends, family, roommates, or colleagues.
/images/2025/03/24/lastpass_review_0325_refresh_item_sharing.png)
The Sharing Center within the LastPass dashboard allows you to send passwords to anyone while continuing to keep that information encrypted. It’s way better than pasting the Disney+ password into a text to your mom for the 15th time.
With the free plan, you can use one-to-one sharing, which allows you to share your passwords and saved items with one person at a time. With the paid plans, you can also use one-to-many sharing, so you can share your entries with multiple people.
If you’re an Apple person, you may be familiar with the password generator that comes standard as a part of iOS. LastPass also provides this service with its own proprietary password generator.
/images/2024/11/01/lastpass_review_1124_refresh_02.png)
As we tested the extension, the generator would pop up if we were creating a new account. It's also easily accessible from the LastPass extension if the generator doesn't pop up on its own.
When the browser extension is enabled, you can automatically create a secure password directly on a website. These unique combinations make for strong passwords and can help increase your security. LastPass will then save the new password to your vault.
The autofill feature in LastPass creates a profile of you with the information you want, like phone number, address, credit card info, and more. You can fill online forms by clicking the browser extension in your toolbar.
From the Security Dashboard, you can find your Security score. This feature evaluates your passwords, password hygiene, and sharing practices, then assigns a score based on how you use passwords.
For instance, if you use the same password multiple times, your strength score will be lower because there are more chances that this password could be breached. If you use unique, complex passwords for all your accounts, you’ll end up with a high rating.
/images/2024/11/01/lastpass_review_1124_refresh_12.png)
Our score was lower because we had some repeated passwords and hadn't enabled multi-factor authentication yet. If you click through on the View passwords button, LastPass will clearly list the issues with your passwords along with a button to correct them.
Additionally, you’ll need to continue to monitor your account as LastPass scans the web for data breaches. If your password appears in a breach, it’ll lower your score and suggest you change the password.
Digital legacy is a uniquely 21st-century problem. What do you do with a person’s online accounts when they pass away?
LastPass allows you to grant someone emergency access in case of a forgotten password. You can also grant temporary access or update specific folder permissions to share the passwords within and skip sharing your master password.
We tried this out by selecting the plus sign on the emergency access tab in our dashboard. We added our personal email address and were notified by LastPass that we can request access to the account in case of an emergency.
/images/2025/03/24/lastpass_review_0325_refresh_emergency_access.png)
You can also name heirs to receive access to your vault in the event of your passing. This can help families or loved ones who are trying to access bank accounts, medical information, emails, and other services.
Additional bonus features offered by LastPass for business and family accounts are:
/images/2024/11/01/lastpass_review_1124_refresh_14.png)
Since LastPass has such a robust free product offering, it’s more than likely the company is selling data to recoup profits lost. After reading the U.S. privacy policy listed on the website, it's pretty clear that’s exactly what’s happening. LastPass is even using aggregated data from other parts of the web to create a clearer picture of you for marketing purposes.
Under "How We Use Your Data and Legal Basis," the policy states your data is used to "identify leads and prospects for marketing purposes."
The description reads, "Analyze our records to identify prospects as well as their presumed or identified needs or preferences and serve ads and other communications that may be of interest to you.” Identifying “prospects for marketing” may involve sharing or using your data for targeted advertising purposes.
It’s also concerning that LastPass notes it can “Rectify or correct personal data about you that is inaccurate, incomplete or out-of-date” that you provide along with data it collects from outside sources.
Why would a password manager need to “correct” your personal data? Why wouldn’t it just store your passwords and leave the rest of your identity alone?
These are the types of questions you should ask when looking at a product to which you give so much information. Since you’re sharing personal, financial, health, and other login details with LastPass, selling that information seems counterintuitive to the purpose of its service — keeping your data secure.
LastPass claims a significant number of security certifications and advertises its Bug Bounty program in an effort to show customers how dedicated it is to security.
LastPass most recently earned the ISO 27701 certification in May 2024. It's also achieved FIDO2 Server Certification, SOC 2 and SOC 3, and BSI C5.[1]
It continues to undergo internal audits, but we'd feel more secure if it was audited by a third party, especially after the breaches.
LastPass suffered two major security incidents in 2022 that left customers’ data exposed, with the last breach including encrypted password vaults. Initially, LastPass didn't recommend any actions at all and just assured users that the passwords stored with the service were secure.
The previous cybersecurity incident in August 2022 saw hackers getting away with some of LastPass’ source code.[2] Source code is the foundational structure, the DNA, of any software. Like DNA, if you alter part of it, you can alter the entire entity.
In March 2023, LastPass released an update stating that no threat actor activity had been seen since October 26, 2022. It also provided security bulletins with recommended actions for LastPass users. But with competitors like Keeper and NordPass having never been hacked, it’s probably safer to go with one of those services.
If you're a LastPass customer, you should enable multi-factor authentication and update your privacy settings to keep accounts safe.
Two-factor (2FA) and multi-factor authentication (MFA) allow you to add extra layers of security to products that handle some pretty private data. This type of passwordless authentication can supplement the security holes found in password security.
LastPass takes advantage of this technology by using 2FA and allowing you to go deeper by enabling MFA. LastPass has a proprietary authenticator but also allows for integration of other authenticators, such as biometric logins, which improve the security of 2FA.
/images/2025/03/24/lastpass_review_0325_refresh_mfa.png)
LastPass is compatibile with a wide range of browsers, mobile devices, and operating systems. For web browsers in general, the two most recent versions work with LastPass. Anything older than that, and you’ll need to update your browser.
Keep in mind that free users are also limited to one device, so be sure to install it on a device that you use to log in to your accounts most often.
Operating systems and mobile apps
Browsers
Note that the LastPass for Safari extension has replaced the LastPass desktop app for macOS.
The least helpful aspect of LastPass is its customer service.
While you have to be subscribed to a paid tier like Premium or Families to access personal customer service, you’re still encouraged to sort through the self-help section before reaching out to the call center. Like most self-help sections of technical sites, finding answers to more obscure questions can be time-consuming and frustrating.
As you may have guessed, you’ll only get general suggestions on the self-help pages instead of direct answers to your questions. If you’re looking for a solution to a less common issue, you may find yourself searching for a while.
LastPass has added a chatbot that links to a live person if you can’t find what you’re looking for in self-help. When we tried to reach out to an agent, the chatbot let us know that no one was available and created a case for us.
/images/2024/11/01/lastpass_review_1124_refresh_15.png)
Considering there's nowhere listing the chat hours, we're not sure how usable this option actually is.
LastPass is a solid password manager but we don't blame you if you're dissuaded by its history of data breaches. Here are some other password managers to consider that haven't been breached (as of this writing):
 NordPass |
 RoboForm |
 Aura Password Manager |
|
| Best for | Best overall password manager | Best value | Best all-in-one |
| Starting price | Starts at $1.99/mo | Starts at $0.99/mo | Starts at $1.99/mo |
| Autofill | |||
| Password sharing | |||
| Password generator | |||
| Digital legacy | |||
| Compatibility | Windows, macOS, Linux, Android, iOS, Chrome, Edge, Firefox, Opera, Safari | Windows, macOS, Android, iOS, Chrome, Edge, Firefox | macOS, Android, iOS, Chrome, Edge, Firefox |
| Learn more | Get NordPass | Get RoboForm | Get Aura Password Manager |
LastPass’ trustworthiness has come into question with two back-to-back breaches in August and October 2022. Competitors Keeper and 1Password both boast similar levels of security without data breaches or being hacked.
LastPass has encountered more security breaches than we’d like to see from a security provider. It can also become glitchy on devices like Apple Watches or with macOS updates.
Both Keeper and NordPass are top alternatives to LastPass. As of the date of publishing, neither service has suffered a hack or data breach.
While Google has a proprietary password manager built into Chrome, Google’s password manager isn’t safe enough to trust all your data to the service. A third-party service like the two we’ve mentioned will add another layer of security.
Yes, LastPass was hacked in August 2022, and that information was used to perform another, more expansive breach in October 2022. Among the data stolen were customers’ encrypted vaults and source code from LastPass itself.
Even if we could be 100% sure that LastPass fixed its security flaws, LastPass has suffered too many security incidents to feel like it's a good product. The fact that the first security breach of 2022 happened a month after LastPass received its third-party audited security certificate is worrying.
On top of that, the dicey privacy policy and aggregated collection of data feel out of place for a security-focused company.
That isn’t to say you shouldn’t use a password manager. They help keep everything organized so you don’t lose your passwords. If they contain features like a password generator, like LastPass does, then you have additional security with strong, unique passwords suggested and saved for you.
See how LastPass compares to more secure password manager options:
User-friendly way to securely store and organize your passwords
Compatible with lots of browsers, OS, and devices
/images/2023/10/04/nordpass_vs._lastpass.jpg)
/images/2023/05/11/best-password-managers.png)
/images/2025/12/30/best_free_password_managers.png)
/images/2025/12/12/keeper_vs._1password.jpg)
/images/2025/12/01/total_password_review_featured_image.jpg)
/images/2025/10/28/nordpass_vs._bitwarden.jpg)
/images/2025/09/21/1password_vs._aura_password_manager.jpg)
/images/2025/09/21/nordpass_vs._aura_password_manager.jpg)
/authors/mary-james_allaboutcookies-author.jpg){kind=small}
/authors/steph-trejos-new.jpg){kind=small}
/authors/catherine-mcnally-allaboutcookies-editor.jpg){kind=small}
/images/2023/03/09/logo-nordpass.png){kind=logo}
/authors/mary-james_allaboutcookies-author.jpg)
/authors/steph-trejos-new.jpg)
