LastPass, the renowned password management service, has released an urgent alert to its users regarding an active social manipulation campaign aimed at customers through fabricated evaluations on the Chrome Web Store.
An ongoing scheme involves malevolent actors posting deceitful 5-star ratings for the LastPass Chrome extension, endorsing a false customer assistance helpline to pilfer user information.
The deceptive tactic includes cybercriminals submitting positive ratings advising users encountering problems with the LastPass application to reach out to “LastPass online customer service” at a designated phone number.
Nevertheless, this contact number is not linked with LastPass; instead, it connects callers to fraudsters posing as company representatives.
Upon contacting the fictitious support number, individuals are met by a person inquiring about their product troubles and device specifics. Subsequently, the fraudster steers callers towards a dubious website, dghelp[.]top, while urging interaction with the site over the call.
Fake Web Store Reviews
These counterfeit support numbers are not only circulating through Chrome extension assessments but also across various online platforms that permit user-generated content.
LastPass is actively intervening in this scheme by eradicating bogus reviews and shutting down phishing portals.
The enterprise stresses that these reviews are fraudulent and alerts users to remain vigilant, as the usernames linked to the reviews might vary, but the content has remained consistent.
To safeguard themselves, LastPass users are reminded that the company will never request their main passphrase.
For genuine customer assistance, users should solely engage with the official LastPass site. The company advises users to exercise prudence and report any dubious emails or phone numbers to abuse@lastpass.com.
This recent security peril surfaces following previous breaches on LastPass, notably in 2022, that led to the compromise of customer information and source code.
While the company strives to rebuild trust with its user community, this fresh scam accentuates the perpetual challenges in upholding cybersecurity in light of progressively intricate social manipulation tactics.
The article LastPass Warns of Hackers Misusing Reviews for Fake Support Numbers was first seen on Cyber Security News.