LastPass Review: Quick Expert Summary
Update December 2022: LastPass customers’ password vault information, including website usernames, passwords, secure notes, and form-filled data, was exposed during a major data breach in December of 2022.
Since all of this information is secured by LastPass’s 256-bit AES encryption, the only way a hacker can access it is through a customer’s master password. If you’re currently using LastPass, you should make sure you’re using a strong and unique master password that you haven’t shared with anyone.
While we still recommend LastPass as one of the best password managers in 2023, there are many good options for customers looking to switch providers. For example, top password managers like 1Password and Dashlane are excellent alternatives to LastPass and have never suffered a data breach.
LastPass is secure, comes with more additional features than most competitors, and is pretty cheap. To ensure the safety of all user data, LastPass uses military-grade encryption (256-bit AES), has a zero-knowledge policy, and provides multiple two-factor authentication options (2FA) as well as biometric logins.
LastPass also offers many additional features, including:
- Secure password sharing — share passwords with one other user (free plan), or with multiple users (paid plan).
- Security dashboard — analyze password vault for old, weak, and duplicate passwords, and monitor the dark web for leaked accounts.
- Multiple account recovery options — access password vault even if you lose your master password.
- Emergency access — provide trusted contacts with access to the vault in case of an emergency.
- Country restriction — select from which countries you can access your vault.
- Credit monitoring (US only) — monitor credit reports for suspicious activity and prevent identity theft.
All LastPass’s features are easy to understand and use — during my tests, I had no problems adding items to my vault, auto-saving and auto-filling logins, setting up two-factor authentication, or using any of LastPass’s extra tools.
However, I’d like to see LastPass improve a couple of features. Importing passwords to the LastPass vault isn’t very intuitive, and contacting LastPass’s customer support should be much easier.
LastPass offers a really good free plan — it includes unlimited password storage across unlimited mobile devices or computers (not both), as well as one-to-one password sharing. And LastPass Premium and LastPass Families are both an excellent value, adding many extra features that make LastPass one of the best password managers out there.
LastPass provides a 30-day free trial for its paid plans, so you can give it a try risk-free and see if it’s the best choice for you.
|🏅 Overall Rank||#6 out of 52 password managers|
|🔐 Encryption||256-bit AES|
|🎁 Free Plan||Unlimited passwords, unlimited desktop or mobile devices|
|💸 Pricing||Starting at $3.00 per month|
|💰 Money-Back Guarantee||30-day free trial|
|📀 Operating Systems||Windows, Android, Mac, iOS, Linux|
Free for 30 Days – Get LastPass Now
LastPass Full Review
LastPass is a very user-friendly and feature-rich password manager. All of its packages come with a wide range of easy-to-use security features — from basic password management features like auto-save and auto-fill to extra tools such as password auditing and emergency access.
LastPass’s Free plan is one of the best free plans on the market. Its paid plans come with more features than most password managers, and at a great price, too.
LastPass Security Features
LastPass has all of the essential security features needed to keep your data secure, including:
- 256-bit AES encryption.
- Zero-knowledge architecture.
- Multiple 2FA (two-factor authentication) options.
256-bit AES encryption has never been broken — it’s used by high-security establishments like banks and militaries. Additionally, all of LastPass’s user data is encrypted and decrypted on the device level, and a user’s master password (which is used for encrypting and decrypting data) isn’t stored on LastPass’s servers.
Not even LastPass employees can access your password vault, because LastPass uses local encryption — this makes LastPass a “zero-knowledge” password manager. Finally, two-factor authentication uses a second factor to verify your identity, which prevents anyone from accessing your data on a different device (even if they somehow got a hold of your master password).
LastPass also has some additional security tools, such as:
- Password security auditing.
- Secure password sharing.
- Multiple account recovery options.
- Emergency access.
Account recovery means you can access your vault if you forget your master password — many password managers, like Sticky Password, don’t offer account recovery, so if you lose your master password, there’s no way to get access to your passwords and other data. LastPass offers the most recovery options out of all top competitors — including SMS recovery and a recovery one-time password.
LastPass’s emergency access is another useful feature, which enables you to set up a trusted contact who can enter your LastPass vault in case of an emergency. While all the top password managers offer password auditing and sharing, not many competitors have account recovery options or emergency access, so this is a point in LastPass’s favor.
Overall, LastPass is a secure and feature-rich password manager. It has all of the essential features to protect user data, and it also provides several extra tools that allow you to securely share passwords, check the strength of your passwords, and regain access to your vault in case of a lost master password.
LastPass has a web vault and a desktop app for Windows and Mac — both the web vault and desktop apps are intuitive, and adding, customizing, and editing entries is very simple.
LastPass lets you save a wide range of entries, including passwords, notes, addresses, payment cards, bank accounts, driver’s licenses, passports, social security numbers, insurance policies, and more. Because these pre-made entries don’t have customization options, LastPass also offers an option to create a fully customized item.
LastPass also lets you create as many folders as you want (and there’s an option to add folders to subfolders) — this makes it very easy to organize all of your passwords and other data.
Manually adding new entries to the vault is pretty simple. All you have to do is click on the red ‘+’ button in the right-hand corner of the dashboard, choose which type of item you want to add, and type in your information. However, keep in mind that it’s much easier to add passwords using the browser extension — the extension offers to automatically save login credentials every time you log into a new online account.
There are also several settings for securing and organizing entries. For example, when editing items, you can enable/disable auto-login and auto-fill for specific passwords directly from the vault — sometimes it’s better to disable these functions for security reasons (for example, on banking sites).
You can also choose to set up a master password reprompt for passwords and other data, and it’s possible to select the language for auto-fill (20+ different languages are available for most entries, including bank account and payment cards). As for organizing passwords, you can add entries to favorites, which makes it very easy to find the entry you’re looking for.
Overall, LastPass’s password vault is one of the best I’ve ever tested. I’m a huge fan of LastPass’s sorting options, I found it very simple to add and change entries, and I think it’s really good that LastPass lets you create customized items. I would like to see a multiple vault system implemented into LastPass though — with 1Password you can create as many vaults as you like. But that said, I had no problem arranging my info intuitively in my LastPass vault.
LastPass’s vault is super user-friendly, so it’s a great choice for beginner or non-tech-savvy users. But because there are lots of different options for customizing and organizing passwords, LastPass is a good option for advanced and technical users, too.
I really like LastPass’s browser extension. It’s available for Chrome, Firefox, Safari, Opera, and Edge.
The browser extension lets you use all of LastPass’s essential features — you can search your entire password vault, view all your stored items, add or edit entries, or launch a site. You can also import and export passwords and other data using the browser extension.
LastPass’s browser extension has a built-in password generator, and there’s a button for LastPass’s Security Dashboard — but clicking on it will only take you to the web vault.
During my tests, LastPass’s browser extension worked really well. I was especially impressed with the auto-save and auto-fill functions. Every time I logged into an online account for the first time, LastPass offered to save my credentials. And every time I navigated to a login field, LastPass automatically filled my username and password.
LastPass’s auto-fill feature worked perfectly every time when I tested it on many of my online account login pages. If I needed to use a different account — or if for any reason LastPass couldn’t recognize the site — I could click the LastPass logo in the login fields and select the login I needed. Other browser extensions, like Bitwarden’s, are a bit clunkier and less intuitive when it comes to auto-fill.
Overall, LastPass’s browser extension is one of the best I’ve ever used. The auto-save and auto-fill functions work perfectly. I also like that you can access all of LastPass’s essential features from the extension, including importing, exporting, adding, editing, and generating passwords. LastPass’s browser extension is very user-friendly, and even complete beginners will be able to quickly figure it out.
LastPass’s password generator is easy to use and offers a lot of different ways for you to create secure passwords. You can access the password generator from the main dashboard or from the browser extension.
You can’t open the password generator when adding new passwords to the web vault, which is a bit annoying. Instead, you need to click on Advanced Options > Generate secure password, or go to the Security Dashboard, view passwords that are at-risk, and click on the link to the generator. That said, locating and using the generator in the extension is very easy.
The generator worked perfectly in my tests. I tested it by signing up for several new online accounts and using it to generate each new password. During each signup, I just had to click on the LastPass logo in the password field (or open the extension and click on the generator), and LastPass would generate a complex password. The default password length is 12, but you can generate passwords up to 99 characters long. The passwords can contain uppercase letters, lowercase letters, numbers, and symbols.
The generator can create passwords that are ‘easy to say’ or ‘easy to read’, which is great. Passwords that are easy to say have no special characters or numbers, and passwords that are easy to read have no confusing characters (like “O” vs. “0” or “l” vs. “I”). Some of my passwords need to be easy to read — like my Wi-Fi password which gets shared with guests all the time — so I think this is a really cool feature.
You don’t get this level of customization with most password managers (like RoboForm or NordPass, both of which don’t have anywhere near this level of flexibility).
Overall, LastPass makes creating secure passwords simple. The password generator pops up any time you click on the LastPass logo in the password field, and it offers a lot more functionality than most competing password managers. I especially like that LastPass’s password generator offers helpful options like generating passwords that are ‘easy to read’ and ‘easy to say’.
Two-Factor Authentication (2FA)
Two-factor authentication (2FA) requires users to verify their identity, using a second form of authentication like a code or a fingerprint scan. So, whenever you want to log into your account, you’ll need to provide your master password and either enter a code or scan your fingerprint. This added layer of security ensures that a hacker can’t access your password vault even if they somehow knew your master password.
LastPass offers a wide variety of 2FA options. It’s compatible with third-party authenticator apps like Google Authenticator, Microsoft Authenticator, Duo Security, Toopher, and Grid. However, keep in mind that Toopher has been acquired by Salesforce and is no longer accepting new users, but users who installed the Toopher app before the acquisition can still use it with LastPass.
All LastPass plans also include LastPass’s Authenticator — it supports 3 different authentication methods, including 6-digit passcodes, SMS сodes, and push notifications. LastPass’s premium plans also include compatibility with the USB authenticator YubiKey and fingerprint and smart card readers.
Setting up LastPass’s 2FA is very easy. You can find the list of supported options by clicking on Account Settings > Multifactor Options. When you choose an option that you want to use, just click on the Edit button, and LastPass will provide you with setup instructions.
LastPass Authenticator can be used as a code generator too. For example, I connected LastPass Authenticator with my Google account — so to sign into my Google account, I had to use LastPass Authenticator as a second factor of authentication. However, note that LastPass Authenticator is listed under Google Authenticator on the verification screen, which is slightly odd.
LastPass also lets you set up trusted devices — if you don’t want to use two-factor authentication on a specific device, you can mark it as trusted, and LastPass won’t ask you to type in a code or use a fingerprint on that device for 30 days.
Overall, LastPass’s 2FA options are among the best on the market. It supports a huge number of authenticator apps, as well as other options like USB authentication and fingerprint/card reader. Even top competitors like Dashlane don’t have such an extensive range of 2FA options. And LastPass offers its own Authenticator app which you can use to log into your LastPass vaults and secure other accounts that support two-factor authentication.
LastPass makes it easy to share passwords and other data with other users. To share an item, simply click on the sharing button next to each entry. A new window will appear, and all you have to do then is enter the email address of the person you want to share the entry with. You can choose whether or not the recipient can view the password.
You can also share one or more items via the Sharing Center, by clicking on the red ‘+’ button.
LastPass’s sharing function worked flawlessly in my tests. I shared a couple of passwords with a colleague who already had a LastPass account. After receiving an email from LastPass which informed him of the password share, my colleague logged into his LastPass account and accepted the passwords I’d shared with him. Because I chose not to let my colleague view the shared passwords, he could only use them (without seeing what the actual passwords were).
LastPass also lets you revoke access to an entry at any time. All you have to do is go to the Sharing Center and click on the ‘x’ button next to an entry, and the password recipient will no longer have access to that entry.
Even LastPass Free lets you share passwords, but only with 1 person (Dashlane Free on the other hand lets you share with unlimited Dashlane users). I think it’s great that you can share passwords at all on LastPass’s free plan, but to share with multiple people, you need LastPass Premium. LastPass Families also lets you share an unlimited number of folders with up to 5 family members.
Overall, LastPass’s password sharing function is really good. You can easily share one or more passwords with other LastPass users — and password sharing is even available on the free plan! While free LastPass users can share passwords with 1 other user, if you opt for a premium plan, you can share entries with multiple users. LastPass makes password and data sharing very simple, and I really love that you can conceal shared passwords (so recipients can use the passwords, but not actually see them) and revoke access at any time.
LastPass’s Security Dashboard offers a security score and dark web monitoring. The security score audits the strength of all the passwords in the LastPass vault, whereas dark web monitoring alerts you if the emails stored in the vault have been compromised in a data breach.
LastPass’s security dashboard assigns you an overall security score for all of your passwords based on how old they are, how strong they are, and whether they’ve been repeated. It also lets you know if any passwords have been potentially breached. You can increase your score by strengthening or changing those passwords, or by enabling two-factor authentication.
I added several weak and duplicate passwords to my LastPass vault — and the security score feature identified all of them. To increase my security score, LastPass gave me the option to launch the sites where weak passwords had been found and change them manually.
LastPass uses Enzoic’s database for its dark web monitoring, which checks to see if any of the stored emails in a vault have been leaked on the dark web. During my tests, LastPass alerted me that one of my online accounts had been compromised in a data breach, and it also informed me which data was leaked (email, password, phone number, and name). I could then manually change the password for the compromised account. While LastPass’s dark web monitoring is not quite as in-depth as Dashlane’s, it’s still pretty good (and other competitors like Enpass don’t have dark web monitoring at all).
Overall, I really like LastPass’s Security Dashboard — it made it very easy for me to monitor how good my overall password security practices were and quickly make any changes if necessary. During my tests, LastPass identified all of my weak passwords, and it also alerted me that one of my test emails was involved in a data breach. While LastPass’s Security Dashboard isn’t a unique feature, it’s much more intuitive and easier to use than most competitors.
LastPass offers many options to recover your LastPass account if you forget your master password. Some password managers offer one or two account recovery options, but LastPass offers far more than most competitors — and all of them are very easy to set up and use. Options include:
- Mobile account recovery. If you forget your master password, you can easily confirm your identity using either Touch ID or Face ID on the mobile app login screen, and then set a new master password. This works for both iOS and Android devices. As soon as you download the LastPass mobile app, LastPass will prompt you to enable biometric logins — all you have to do is scan your fingerprint or face.
- Master password hint. If you lose your master password, LastPass can send a master password hint to the email address registered with your LastPass account. You can set up a master password hint when creating a LastPass account, when changing your master password, or you can manually enter the hint in Account Settings.
- SMS recovery. You can set up a recovery phone in Account Settings, and if you forget your master password, LastPass will send a code to the provided phone number.
- Restore your previous master password. You can recover your account with your old master password, but only if the password change was made within the last 30 days. However, your account will be restored to how it was when you changed passwords, meaning that some recent data may be lost.
- Recovery one-time password. Every time you log into LastPass via a browser extension, LastPass creates a recovery one-time password which can be used to reset your master password.
I really like all of LastPass’s account recovery options — I tried all of them, and I was able to recover my account and set up a new master password in 1 minute or less, no matter which recovery option I used. LastPass is one of the rare password managers that offers many account recovery options (some top password managers like Bitwarden and Sticky Password don’t have any). If you ever happen to forget your master password, LastPass makes it incredibly easy for you to gain access to your vault.
Emergency access lets you assign a trusted contact, who can access your LastPass vault if necessary. To set up emergency access, you only have to type in the email address of your trusted contact and select a waiting period — from “immediately” up to “30 days”.
The emergency access feature is very easy to use. I tested this feature by assigning my best friend as an emergency contact, and I chose to immediately give him access to my vault. My friend received my invitation, accepted my request, and was immediately able to see all of my LastPass entries in his LastPass vault. If you set a longer waiting period, you can deny access to your LastPass vault within the specified waiting period.
You can also revoke access to your vault at any time, and you can opt out at any time if another LastPass user nominates you as an emergency contact.
I would like to see LastPass include emergency access for specific logins and details — so emergency contacts can only view selected logins, not the entire contents of the LastPass vault. Password Boss has implemented this feature. But I don’t mind LastPass’s approach. It was very easy to set up and use LastPass’s emergency access, and I could choose to deny my friend access to my vault at any point.
In addition to the features described above, LastPass also has useful extras, like:
- Country restriction.
- One-time passwords (OTPs).
- Credit monitoring.
- Passwordless options.
- Never URLs.
- Equivalent Domains.
LastPass’s country restriction feature is really useful — it lets you choose from which countries you’re allowed to access the LastPass vault. By default, you can access your LastPass login from any country in the world, but if you want to add another layer of security to your account — potentially preventing hackers from other countries from gaining access to your vault — you can set up country restrictions.
It’s important to remember that you need to update country restriction settings when traveling to another country, otherwise you won’t be able to access your vault when you’re abroad. Also, if you often use a VPN, you should make sure that the countries with the server locations you connect to can access your vault.
LastPass also has the option to generate one-time passwords — these can be used as an extra security measure when logging into your LastPass account from a device you don’t trust. One-time passwords are generated after you log into your account, and you can print or write them down. When you’re logging into your LastPass account from an unsecured device, you then don’t have to use your master password — instead, you can log in with the previously generated one-time password. Keep in mind that you can use each one-time password only once. So, even if someone found out your previously used one-time password, they wouldn’t be able to enter your LastPass vault.
LastPass also offers credit monitoring for all US users. It monitors your credit reports, notifying you of any changes that may indicate that your identity is compromised. Credit monitoring is available with all the paid plans, but you can also upgrade to the premium version of the service and get more comprehensive coverage (including help with resolving any issues with your credit score).
The passwordless options tool removes the requirement to enter your master password on your device — instead, you can use the LastPass Authenticator. This is convenient for gaining immediate access to your vault, because using the LastPass Authenticator requires just one click. The option to use desktop biometrics and security keys for passwordless login is coming soon too.
Never URLs is great when you don’t want to use LastPass for certain sites. When you want to add a URL, LastPass asks you what type of Never URL you want, including Never Add Site, Generate Password, Fill Forms, Auto Login, and more. This is good if other people may use your device and you don’t want them to have one-click access to your accounts.
Another convenient tool that advanced users may find useful is Equivalent Domains, which lets you use the same login for companies that use the same login service. For instance, you can set this up for Disney.com and Disneyplus.com. LastPass provides a list of global equivalent domains but you can manually enter your own.
I really like these additional features. LastPass is the only password manager that provides country restrictions, which can prevent hackers from other countries from accessing user vaults. I also like that you can generate one-time passwords for logging into your LastPass account from a device you don’t trust, which prevents keyloggers from capturing your master password. And LastPass’s credit monitoring is a useful addition — but it’s only available for US users.
LastPass Plans and Pricing
LastPass offers 3 plans for personal use and 2 plans for business use. All of LastPass’s plans are billed annually — there’s no monthly plan, and unlike top competitors like Dashlane, LastPass doesn’t offer a money-back guarantee.
However, LastPass offers a free version for individual users, and all of its paid plans include a free trial (30 days for single users and families, 14 days for businesses).
Here’s a quick overview of LastPass plans:
|LastPass Free||LastPass Premium||LastPass Families|
|Platforms||Windows, Android, Mac, iOS, Linux||Windows, Android, Mac, iOS, Linux||Windows, Android, Mac, iOS, Linux|
|Number of licenses||1||1||6|
(unlimited mobile or computer, not both)
|Unlimited shared folders||❌||❌||✅|
|Grant emergency status||❌||✅||✅|
|1 GB file storage||❌||✅||✅|
|Dark web monitoring||❌||✅||✅|
LastPass Free — Unlimited Password Storage & One-to-One Password Sharing
LastPass Free is one of my favorite free password managers on the market today. It has a huge range of features that many other free password managers don’t include, such as:
- Unlimited password storage on unlimited mobile devices or computers.
- Secure notes storage for credit cards, documents, and other sensitive info.
- One-to-one password sharing.
- Password generator.
- Password auto-save and auto-fill.
- Two-factor authentication.
- LastPass Authenticator.
Computer users can use LastPass on Windows, Mac, and Linux computers, as well as Windows tablets. Mobile users can use it on Android phones, iPhones, Android tablets, iPads, and smartwatches. While this is a bit limiting, many free plans, like RoboForm’s, limit you to one device, so being able to use multiple devices of one kind or another is a step up from that.
All in all, LastPass’s free plan is more generous than most free password managers, with the exception of Bitwarden — which provides syncing across an unlimited number of both mobile and computer devices. However, while LastPass Free is definitely one of the best free password managers out there, it’s worth noting that this plan doesn’t include advanced security features like emergency access, secure cloud storage, or advanced 2FA options. Plus, it no longer offers email support. Nonetheless, LastPass’s free version is a decent choice if you’re looking for a free, feature-rich password manager.
LastPass Premium — Best Value Plan (With One-to-Many Password Sharing & Emergency Access)
LastPass Premium includes all features of the Free plan, plus:
- One-to-many password sharing.
- Security dashboard and dark web monitoring.
- Advanced two-factor authentication options.
- Emergency access.
- 1 GB secure cloud storage.
- Credit monitoring/identity theft protection (US only).
At $3.00 / month, LastPass Premium is a really good value. It’s the same price as many other password managers that offer fewer features, and you can try out all of its premium features risk-free with a 30-day free trial to see if it’s the best choice for you.
LastPass Families — Multiple Users and Unlimited Sharing
LastPass’s family plan covers up to 6 users for $4.00 / month. Along with all of the features in LastPass Premium, LastPass Families also has:
- Family manager dashboard. Easily add and remove members using their email addresses.
- Unlimited shared folders. Grant users shared access to specific password folders. This is a convenient way for individuals or groups to share data.
LastPass Families is one of the best family password managers in 2023. The dashboard makes it very easy to manage who has access to shared folders.
The only downside of this plan is that LastPass doesn’t let you add more users. If you need coverage for more than 6 users, I recommend 1Password’s family plan, as it gives the option to add more users for a small fee and has similar level of security features — making it a more cost-effective option for larger families. I also like Dashlane’s Friends & Family plan, which allows up to 10 users and includes a VPN. That said, LastPass’s family plan also has a risk-free 30-day trial, so you can try it and see if it’s right for you.
LastPass Plans for Business Users — Teams and Business
LastPass has two plans for business users: Teams and Business.
LastPass Teams covers up to 50 users for $4.00 / month, and only has standard two-factor authentication. This plan also has:
- Easy-to-use admin dashboard.
- Company-controlled password vault for every employee.
- Password generator.
- Auto-save and auto-fill.
- Shared folders.
- Security dashboard and dark web monitoring.
LastPass Business covers an unlimited number of users, and as well as including all of the features in LastPass Teams, it adds the following tools:
- Over 100 customizable security policies.
- Authentication for SSO/Cloud apps.
- Free Last Pass Families account for employees.
- Extensive SSO reporting.
You can also add on Advanced SSO, which adds unlimited cloud applications to LastPass’s single sign-on, and Advanced MFA, which offers simple, passwordless multi-factor authentication, at a small additional cost per user.
LastPass’s business plans are reasonably priced and definitely worth looking into, making it to the list of best business password managers in 2023. And all of the business plans come with a 14-day free trial, so there’s no risk in trying them out.
LastPass Ease of Use and Setup
Installing and setting up LastPass is very simple. To create a LastPass account, you need to enter an email address and select a master password that is at least 12 characters long, and has at least 1 number, 1 lowercase letter, and 1 uppercase letter. The final requirement for creating a master password is that it can’t be the same as your email address.
LastPass provides a short explanation of what a strong master password is, advises you to create a password that ‘tells a story unique to you’, and gives an example of a strong master password (Fidoate!my2woolsox). While I like that LastPass has several requirements for creating a good master password, I was a bit surprised that I could create my account using LastPass’s example password!
Next, I was prompted to install the browser extension. The browser extension installation was quick and easy — taking just one click.
When I installed the browser extension, I was immediately taken to the web vault. You can also download desktop apps for Windows (from the Microsoft Store) and Mac, but I found it much more convenient to use the web vault. Plus, when you use the web vault, you can access all of your passwords from any computer.
On opening the web vault for the first time, LastPass offers some guidance — it shows you how to save a password, asks you to try out auto-fill, and provides a brief tour of the vault, which explains what most of LastPass’s features do.
I really like that LastPass includes a quick tutorial on how to use its features — this is very useful for non-technical users. However, I don’t like that LastPass doesn’t offer to import passwords during installation. Still, there are two simple ways to import passwords to LastPass’s vault: you can import your existing passwords from the dashboard or you can use the browser extension.
LastPass supports importing data from many major password managers — including 1Password, Dashlane, RoboForm, Keeper, and many others. You can also import passwords from Google Chrome. However, importing passwords to LastPass isn’t as streamlined as I’d like it to be. For instance, after I chose to import my passwords from Google Chrome, LastPass provided me with instructions on how to export my passwords from Chrome. Once I exported the passwords, I had to upload the file to LastPass. While this isn’t difficult, I much prefer competitors like Keeper which provide one-click password import.
I found most of LastPass’s features very easy to understand and use, but I dislike LastPass’s password importing, which requires that you first export your existing passwords from another password manager or Google Chrome, and then upload the file with the passwords to LastPass. I also don’t like that there isn’t a download link for LastPass’s Windows desktop app on the official site.
Other than that, I found using LastPass to be very easy. I really appreciate that LastPass provides in-app instructions on how to save passwords, use the auto-fill function, and access all of the other features in the vault. Advanced users will like that LastPass offers a ton of features, and I’m pretty confident that even non-tech-savvy users will find LastPass simple to use.
LastPass Mobile App
LastPass offers mobile apps for iOS and Android. On both my iPhone and Android, all I needed to do was download the app and enter my email and master password. I could also immediately adjust login settings, enabling LastPass to remember my email address (turned on by default) and master password (disabled by default).
I was surprised that LastPass offered to remember my master password, as remembering the master password on mobile devices isn’t recommended. However, when I went to enable this option, I did receive a warning that it would decrease my account’s security. And because of the warning I received, I ultimately decided not to let LastPass remember my master password.
LastPass asked me to authenticate my identity with the LastPass Authenticator as soon as I entered my email and master password (because I had already set up two-factor authentication in my web vault). LastPass then prompted me to turn on biometric logins to unlock my vault, also informing me that I could use biometric logins as an account recovery option.
And this was it — the setup was complete! I could then view all of my vault’s contents, including passwords, secure notes, addresses, and payment cards. I found it very easy to add, edit, and share items — all of the essential LastPass features are the same on mobile and on the web app.
LastPass’s mobile app also has a secure in-app browser, a security tab, and a Sharing Center. The integrated browser makes logging into online accounts and auto-filling login details easy across mobile sites (keep in mind that you first need to enable auto-fill in the app’s settings). During my tests on both Android and iOS, LastPass’s auto-fill option worked perfectly every time. And I also like that LastPass offers auto-fill for addresses and credit cards, but these features are still in beta and may not always work properly.
The Security tab includes LastPass’s password generator, emergency access, a security challenge which gives you an overall password security score, and a security dashboard which only informs you that you can use this feature on your desktop computer.
LastPass’s password generator on mobile has a default length of 16 characters, which is longer than the 12-character default length on the web app and in the browser extension. It’s also worth noting that the Sharing Center on mobile is pretty useless for individual users — you can use it to add shared folders, but this feature is only available for family users.
Overall, I found LastPass’s iOS and Android apps incredibly easy to use. While the mobile apps are a bit different than the web vault, locating and using all of the features is very simple. Many other password managers either don’t have mobile apps or they have really bad ones — and even decent offerings like Sticky Password’s mobile apps aren’t as feature-rich and intuitive as LastPass’s. It’s nice to see LastPass paying attention to its mobile users.
LastPass Customer Support
LastPass has pretty good customer support options for general questions, but contacting the support team is a little difficult. The support center has a good collection of training videos, “How To” guides, and FAQs, and there’s also a community forum. LastPass also provides a chatbot on the official website — but the bot is only useful for answering basic questions. In contrast, competitors like Dashlane offer helpful live chat support in multiple languages.
LastPass doesn’t offer phone support, which is often the case with password managers. But I was pretty surprised that I couldn’t locate any direct link to email support from the LastPass website. You are meant to use the FAQ page to search for answers to your questions. If the search results don’t solve your issue, then a link to LastPass’s email support is displayed at the bottom of the page.
You have to submit your question using a form, and then you’re assigned a case number. I received an answer that fully answered my question in just over 5 hours, which is pretty good. However, it’s a bit disappointing that LastPass no longer offers 24/7 email support for free users, only for those on paid plans.
LastPass also has 3 Twitter accounts: one notifying about LastPass service outages and resolved issues, another for providing live support Monday to Friday 9am–5pm ET, and the third posts general blog posts and updates about LastPass. However, I couldn’t find a direct link to LastPass’s customer support Twitter account from the website. But I found it by clicking on the Status link on the LastPass website, which took me to the “status update” Twitter account — and then that account linked me to the live support one… not exactly straightforward! I submitted a question to LastPass’s live support Twitter account outside of working hours and received an answer in about 12 hours, so this option is OK to use for not-so-urgent questions.
LastPass should make its customer support options easier to access. The email and Twitter support staff both answered my questions quickly and professionally, but I spent too much time and effort trying to find a way to contact them. That said, LastPass’s website has a ton of very helpful information on how to use LastPass, so most people will never need to contact customer support at all. Even if you do need to (and after you find the right email address), you’ll get a detailed and informed answer within a few hours.
Is LastPass Any Good in 2023?
Yes, LastPass is safe, secure, and easy to use. It uses bank-grade 256-bit AES encryption to ensure all passwords are stored safely, it has a zero-knowledge policy, and it includes many advanced multi-factor authentication options for extra layers of security.
LastPass also has several advanced security features — including secure password sharing, password strength auditing, dark web monitoring, emergency access, multiple recovery options, and even credit monitoring for US users.
And LastPass’s interface is very easy to navigate. I had no issue adding, editing, or customizing passwords and other data in the web vault or on the mobile app, and the browser extension made it incredibly easy for me to auto-save and auto-fill logins.
While I really like LastPass, I do have a couple of minor complaints. I’d like to see LastPass improve its password importing process, and it would be great if there was an easier way for users to contact customer support.
That said, LastPass is one of the best password managers on the market. It’s a great choice for both beginner and tech-savvy users, it has a wide range of additional tools that most other password managers don’t offer, and it’s pretty affordable. LastPass Free is one of the best free password managers out there, with unlimited storage on unlimited mobile or computer devices and one-to-one password sharing. LastPass Premium adds tons of great features, including emergency access, cloud storage, and advanced authentication features. LastPass Families is also one of the better family plans, coming with a family manager dashboard and unlimited sharing between up to 6 plan members. LastPass doesn’t have a money-back guarantee, but it does have a risk-free 30-day trial on its premium plans.
Frequently Asked Questions
Is LastPass safe?
Yes, LastPass is safe. It has a zero-knowledge policy, meaning even the LastPass team can’t access, view, or share the data stored in your vault. And LastPass uses bank-grade encryption (256-bit AES) and TLS certification to protect all data stored in your LastPass vault.
LastPass also includes a range of extra security options to ensure all passwords are safe, including:
- Advanced multi-factor authentication options.
- Touch ID and Face ID verification.
- Options to only allow logins from specific countries.
That said, LastPass did suffer a major data breach in December 2022, and this wasn’t the first time its servers have been hacked. The security measures mentioned above should be enough to ensure customer data stays safe (so long as users have set up strong master passwords), but there are some great alternatives to LastPass that have never been hacked.
Does LastPass have a free version?
Yes. LastPass has a really good free version, which includes:
- One secure vault that can be accessed and managed from multiple devices.
- Unlimited password storage.
- Secure notes storage.
- Password generator.
- One-to-one password sharing.
- Two-factor authentication.
- LastPass Authenticator.
- Passwordless login.
You can choose whether you want to use LastPass’s free plan on your mobile devices (Android phones and tablets, iPhones and iPads, and smartwatches) or your computers (Windows, Mac, and Linux computers, Windows tablets, and the LastPass browser extension).
LastPass Free is one of the most feature-rich free password managers available. It doesn’t have some features that I consider necessary, like emergency access, one-to-many sharing, and secure file storage, but it’s still one of my favorite free password managers on the market.
Does LastPass have account recovery options?
Yes. In fact, LastPass has more account recovery options than any other password manager. You can recover your LastPass account with:
- Master password hint — receive an email with your pre-set master password hint.
- Mobile account recovery — use fingerprint/face ID on your mobile to confirm your identity.
- One-time recovery password — access your account with a recovery password when using the same computer and browser.
- SMS recovery — receive an SMS with a unique code to reset your master password.
- Reverting to the previous master password — access your vault with your old master password (if the change was made no longer than 30 days ago).
LastPass Premium also includes an emergency access function, which enables you to assign an emergency contact to retrieve the data in your vault if you can’t access it.
Can I share a password from my LastPass vault with other people?
Yes. You can easily share logins and other data from your LastPass database with anyone by sending them an email invite. Users without LastPass will need to create their own LastPass account to access the information you share with them.
LastPass Free allows you to share any password entry with one other user, while LastPass Premium and all other paid plans include password sharing with multiple users.
One of the cool things about LastPass’s sharing function is that you can share passwords without the recipient being able to view the password — meaning they can use the password without knowing what the password actually is!
What are the disadvantages of LastPass?
While there are many things I like about LastPass, there are a few drawbacks. Importing passwords isn’t as intuitive as with other top password managers. LastPass provides you with a pretty extensive list of password managers that it allows you to import your passwords from, including 1Password, Dashlane, and Google Chrome. However, you have to first export the passwords from your old password manager to an export file, and then you have to upload that file to LastPass. Other password managers provide one-click options to complete this process.
Another thing that bothers me is you can’t access the password generator when entering a password in your vault. If you want to update it to a different password or stronger one, you have to go through the Advanced Options setting to open the password generator (and copy/paste it in your vault), or go through your Security Dashboard to change it.
Also, I’m not a fan of the hurdles I needed to jump through to reach LastPass email support. Before you can fill out an email contact form, LastPass requires you to first read through FAQs.
All that being said, LastPass is still an excellent password manager with a lot of really good features, and it offers a great value.
Can LastPass be hacked?
Unfortunately, LastPass has suffered security issues in the past. In 2021, LastPass users were victims of credential stuffing attacks, which is when bad actors use usernames and passwords leaked in a data breach to try and log into a user’s other accounts. And in December 2022, LastPass customers’ password vault information was exposed during a major data breach.
If you’re currently a LastPass user, it’s important to ensure you have a strong and unique master password — because your vault is secured by LastPass’s 256-bit AES encryption, the only way a hacker can access it is through your master password.
We still recommend LastPass as one of the best password managers on the market — its 256-bit AES encryption ensures all user data is encrypted and decrypted on the device level, and users’ master passwords aren’t stored on its servers. Plus, LastPass offers many different options for two-factor authentication, which is an extra layer of security. But there are other good options for customers concerned about LastPass’s security issues. For example, 1Password and Dashlane are excellent products and have never suffered a data breach.
Is there anything better than LastPass?
LastPass is a great password manager, but it’s not my favorite. It’s very easy to use, making it a really good choice for new users. Plus, LastPass is very affordable (and has one of the best free plans) and offers a lot of features.
However, my top choice for a password manager in 2023 is 1Password, which has a much cleaner security track record (it’s never been breached), offers more features like Travel Mode and Privacy Cards, has better and more accessible email support, and is better for families — you can add as many additional people to your account as you like for a small fee.
Can I trust LastPass?
For the most part, yes. LastPass has all of the industry-standard password manager security features. These include a zero-knowledge policy, which prohibits LastPass employees from viewing any of your data, 256-bit AES encryption, which means all of the data in your password vault is undecipherable to prying eyes, and multiple 2FA options.
However, LastPass has a cloudy history of falling victim to cyber attacks. It suffered breaches in 2021 and 2022, although LastPass claimed no user data was stolen. Still, this concerns me a bit, especially when other top password managers like 1Password, Dashlane, and RoboForm have never suffered a breach.