LastPass Review: Quick Expert Summary
Update September 2024: It’s been nearly 2 years since LastPass suffered from multiple high-profile hacks. Now operating independently from its former parent company, GoTo, LastPass is trying to regain the trust of its users. During the 2022 breach, hackers stole source code and a backup of customer vaults, but the stolen vaults were inaccessible due to LastPass’s AES-256 encryption. Since then, no further breaches have occurred, and LastPass continues to enforce its strong encryption standards. To further enhance security, LastPass has introduced a 12-character minimum for master passwords and created a dedicated threat intelligence team.
While LastPass is still a top choice in 2024, if you’re uncomfortable with its breach history, 1Password or Dashlane are strong alternatives with clean security records.
LastPass is secure, comes with more additional features than most competitors, and is pretty cheap. To ensure the safety of all user data, LastPass uses military-grade encryption (256-bit AES), has a zero-knowledge policy, and provides multiple two-factor authentication options (2FA) as well as biometric logins.
LastPass also offers many additional features, including:
- Secure password sharing — share passwords with one other user (free plan), or with multiple users (paid plan).
- Security dashboard — analyze your password vault to find and change old, weak, and duplicate passwords, and monitor the dark web for email addresses.
- Multiple account recovery options — access your password vault even if you lose your master password.
- Emergency access — provide trusted contacts with access to your vault in an emergency.
- Country restriction — only allow vault access when you’re in specific countries.
All LastPass’s features are easy to understand and use — during my tests, I had no problems adding items to my vault, auto-saving and auto-filling logins, setting up two-factor authentication, or using any of LastPass’s extra tools. Importing passwords is also easy — I was able to get LastPass working in just a few minutes. I’ll admit that LastPass’s prior record of breaches is concerning, but it’s been 2 years since the last breach, and the truth is, it works very well in 2024.
LastPass offers a really good free plan — it includes unlimited password storage across unlimited mobile devices or computers (not both), as well as dark web monitoring and one-to-one password sharing. And LastPass Premium and LastPass Families are both an excellent value, adding many extra features that make LastPass one of the best password managers out there.
LastPass doesn’t have a money-back guarantee, but it provides a 30-day free trial for its paid plans, so you can give it a try risk-free. You don’t even need to provide a credit card.
🏅 Overall Rank | #6 out of 50 password managers |
🔐 Encryption | 256-bit AES |
🎁 Free Plan | Unlimited passwords, unlimited desktop or mobile devices |
💸 Pricing | Starting at $2.40 per month |
💰 Money-Back Guarantee | ❌ (30-day free trial) |
📀 Operating Systems | Windows, Android, Mac, iOS, Linux |
Try LastPass (30 Days Risk-Free)
LastPass Full Review — Intuitive With a Great Range of Features
LastPass is a very user-friendly and feature-rich password manager. All of its packages come with a wide range of easy-to-use security features — from basic password management features like auto-save and auto-fill to extra tools such as password auditing and emergency access.
LastPass’s Free plan is one of the best free plans on the market. Its paid plans come with more features than most password managers, and at a great price, too.
LastPass Plans & Pricing — A Range of Affordable Options (+ a Great Free Plan)
LastPass offers 3 plans for personal use and 2 plans for business use. All of LastPass’s plans are billed annually — there’s no monthly plan, and unlike top competitors like Dashlane, LastPass doesn’t offer a money-back guarantee or prorated refunds. That said, it’s good to know that it’s pretty easy to cancel your LastPass subscription.
However, LastPass offers a free version for individual users, and all of its paid plans include a free trial (30 days for single users and families, 14 days for businesses). The lack of refunds is a bit disappointing, but the fact that you don’t need to provide any payment information to start a trial goes some way to making up for this.
Here’s a quick overview of LastPass plans:
LastPass Free | LastPass Premium | LastPass Families | |
Platforms | Windows, Android, Mac, iOS, Linux | Windows, Android, Mac, iOS, Linux | Windows, Android, Mac, iOS, Linux |
Price |
Free | $2.40 / month | $3.20 / month |
Number of licenses | 1 | 1 | 6 |
Unlimited passwords | ✅ | ✅ | ✅ |
Unlimited devices | ❌ (unlimited mobile or computer, not both) |
✅ | ✅ |
2FA | ✅ | ✅ | ✅ |
Passwordless login | ✅ | ✅ | ✅ |
Unlimited shared folders | ❌ | ❌ | ✅ |
One-to-one sharing | ✅ (limited to 1 specific user) |
✅ | ✅ |
One-to-many sharing | ❌ | ✅ | ✅ (share whole folders) |
Grant emergency access | ❌ | ✅ | ✅ |
1 GB file storage | ❌ (50 MB secure notes) |
✅ | ✅ (Per user) |
Dark web monitoring | ✅ | ✅ | ✅ |
Email support | ❌ | ✅ | ✅ |
LastPass Free — Unlimited Password Storage & One-to-One Password Sharing
LastPass Free is one of my favorite free password managers on the market. It has a huge range of features that many other free password managers don’t include, such as:
- Unlimited password storage on unlimited mobile devices or computers (not both).
- Secure notes storage for credit cards, documents, and other sensitive info.
- One-to-one password sharing.
- Password generator.
- Security dashboard with password auditing.
- Dark web monitoring.
- Password auto-save and auto-fill.
- Two-factor authentication.
- LastPass Authenticator.
Computer users can use LastPass on Windows, Mac, and Linux, as well as Windows tablets. Mobile users can use it on Android phones, iPhones, Android tablets, iPads, and smartwatches. While this is a bit limiting, many free plans, like RoboForm’s, limit you to one device, so being able to use multiple devices of one kind or another is a step up from that.
All in all, LastPass’s free plan is more generous than most free password managers, with the exception of Bitwarden — which provides syncing across an unlimited number of both mobile and computer devices. However, while LastPass Free is definitely one of the best free password managers out there, it’s worth noting that this plan doesn’t include advanced security features like emergency access or advanced 2FA options. It does give you secure cloud storage, but you’re limited to just 50 MB. Plus, it no longer offers email support. Nonetheless, LastPass’s free version is a decent choice if you’re looking for a free, feature-rich password manager.
LastPass Premium — Best Value Plan (With One-to-Many Password Sharing & Emergency Access)
LastPass Premium includes all features of the Free plan, plus:
- One-to-many password sharing.
- Advanced two-factor authentication options.
- Emergency access.
- 1 GB secure cloud storage.
- Phone, chat, and email support.
At $2.40 / month, LastPass Premium is a really good value. It’s the same price as many other password managers that offer fewer features, and you can try out all of its premium features risk-free with a 30-day free trial to see if it’s the best choice for you.
LastPass Families — Multiple Users and Unlimited Sharing
LastPass’s family plan covers up to 6 users for $3.20 / month.
Along with all of the features in LastPass Premium, LastPass Families also has:
- Family manager dashboard. Easily add and remove members using their email addresses.
- Unlimited shared folders. Grant users shared access to specific password folders. This is a convenient way for individuals or groups to share data.
LastPass Families is one of the best family password managers in 2024. The dashboard makes it very easy to manage who has access to shared folders.
The only downside of this plan is that LastPass doesn’t let you add more users. If you need coverage for more than 6 users, I recommend 1Password’s family plan, as it gives the option to add more users for a small fee and has a similar level of security features — making it a more cost-effective option for larger families. I also like Dashlane’s Friends & Family plan, which allows up to 10 users and includes a VPN. That said, LastPass’s family plan also has a risk-free 30-day trial, so you can try it and see if it’s right for you.
LastPass Plans for Business Users — Teams & Business
LastPass has 2 plans for business users: Teams and Business. LastPass Teams costs $3.20 / month per user and comes with standard two-factor authentication. This plan also has:
- Easy-to-use admin dashboard.
- Company-controlled password vault for every employee.
- Password generator.
- Passwordless login.
- Auto-save and auto-fill.
- Shared folders.
- Security dashboard and dark web monitoring.
- 24/7 email support.
LastPass Business covers an unlimited number of users, and as well as including all of the features in LastPass Teams, it adds the following tools for $5.60 / month:
- Over 100 customizable security policies.
- Authentication for SSO/Cloud apps.
- Free LastPass Families account for every employee.
- Extensive SSO reporting.
You can also add on Advanced SSO, which adds unlimited cloud applications to LastPass’s single sign-on, and Advanced MFA, which offers simple, passwordless multi-factor authentication, at a small additional cost per user.
LastPass’s business plans are reasonably priced and definitely worth looking into, making it to the list of best business password managers in 2024. Both business plans come with a 14-day free trial, so there’s no risk in trying them out.
LastPass Security Features — All the Essentials, Plus Some Useful Extra Tools
LastPass has all of the essential security features needed to keep your data secure, including:
- 256-bit AES encryption.
- Zero-knowledge architecture.
- Multiple 2FA (two-factor authentication) options.
- Passwordless login.
256-bit AES encryption is a highly secure method used by banks and militaries. It has never been broken. LastPass encrypts and decrypts user data at the device level. Master passwords are not stored on LastPass’s servers, so even if the company suffers another breach, your data won’t be readable if your password is a secret.
Two-factor authentication adds an extra layer of security, preventing unauthorized access to your data on different devices. LastPass also offers adaptive authentication, a dynamic multi-factor authentication that adjusts the required authentication factors based on user behavior and risk indicators, balancing security and convenience.
Passwordless login allows you to access your vault without entering a master password on trusted devices. Instead, you can use biometric confirmation (face or fingerprint ID), a USB security key, or a one-tap push notification from the LastPass Authenticator App, which is pretty cool!
LastPass provides additional security tools, such as:
- Password security auditing.
- Secure password sharing.
- Multiple account recovery options.
- Emergency access.
Account recovery ensures that you can regain access to your vault if you forget your master password. LastPass offers the most recovery options of any top password manager, with recovery methods like SMS recovery, familiar device recovery, and biometric recovery — many password managers, like Sticky Password, don’t offer account recovery at all.
LastPass’s emergency access is another useful feature, which enables you to set up a trusted contact who can enter your LastPass vault in case of an emergency. While all the top password managers offer password auditing and sharing, not many competitors have account recovery options or emergency access, so this is a point in LastPass’s favor.
Overall, LastPass is a secure and feature-rich password manager. It has all of the essential features to protect user data, and it also provides several extra tools that allow you to securely share passwords, check the strength of your passwords, and regain access to your vault in case of a lost master password.
Password Vault — Intuitive, Secure & Easy to Organize
LastPass provides user-friendly web vaults and desktop apps for Windows and macOS. Each is intuitive, making adding, customizing, and editing entries simple.
I appreciate that LastPass offers the ability to store a wide array of entries, including but not limited to passwords, notes, addresses, payment cards, bank accounts, driver’s licenses, passports, social security numbers, and insurance policies. You can even save credentials for third-party apps if you have the desktop app. I tested it out and auto-fill worked for apps and websites (most password managers won’t auto-fill on apps). For those who need more control over their data entries, LastPass even provides an option to create a fully customized item.
The organizational features of LastPass make it easy to manage your data. You can create as many folders as you wish and even add folders within folders. This offers a convenient way to categorize your passwords and other data.
Adding new entries to the vault is straightforward, too — just click on the red ‘+’ button in the right-hand corner of the dashboard, select the type of item you want to add, and input your information. However, I found it’s even simpler to add passwords using the browser extension — which offers to automatically save login credentials whenever you log into a new online account.
LastPass also offers various settings for securing and organizing your entries. For instance, while editing items, you can enable or disable auto-login and auto-fill for specific passwords directly from the vault. You can also make it so you’ll always need to re-enter your master password to view specific saved items. Sometimes you might want to make use of these features for security reasons, especially for sensitive sites like banking portals.
Organizing passwords is also easy, as you can add entries to favorites for quick access. I also really like that you can add notes to every item you store in your LastPass vault. I found this super useful for websites where I have more than one account. I jotted a quick note for both of my eBay accounts so I could distinguish the one I buy from and the one I sell on.
Overall, LastPass’s password vault is highly functional and user-friendly. It provides great sorting options and makes adding and changing entries easy. The ability to create customized items is a valuable feature. Like the one offered by 1Password, a multiple vault system would be a welcome addition, but organizing information in the LastPass vault remains intuitive.
Browser Extension — Beginner-Friendly With Seamless Auto-Save & Auto-Fill
I really like LastPass’s browser extension. It’s available for Chrome, Firefox, Safari, Opera, and Edge. The extension provides access to all of LastPass’s essential features directly from your browser. You can conveniently search your entire password vault, view all your stored items, add or edit entries, or directly launch a website. There’s also an in-built password generator.
Beyond that, the extension mostly provides links to the web dashboard. These are well organized. You can go directly to the page showing any security alerts or breaches, the support center, the settings menu, and more.
In my testing, LastPass’s browser extension worked really well. The auto-save and auto-fill features stood out in particular. Whenever I logged into an online account for the first time, LastPass promptly offered to save my credentials. And whenever I navigated to a login field, LastPass automatically populated my username and password.
LastPass’s auto-fill feature worked perfectly every time when I tested it on many of my online account login pages. If I needed to use a different account — or if for any reason LastPass couldn’t recognize the site — I could click the LastPass logo in the login fields and select the login I needed. Other browser extensions, like Bitwarden’s, are a bit clunkier and less intuitive when it comes to auto-fill.
Overall, LastPass’s browser extension ranks among the best I’ve ever used. Its auto-save and auto-fill functions work seamlessly, and the ease of importing, exporting, adding, editing, and generating passwords makes it stand out. It is user-friendly enough for even complete beginners to quickly figure it out.
Password Generator — Flexible Tool for Creating Secure Passwords
LastPass’s password generator can generate virtually unguessable passwords. It works very well, but I do have a few small complaints.
I tested it by signing up for several new online accounts and using it to generate each new password. During each signup, I just had to click on the LastPass logo in the password field (or open the extension and click on the generator), and LastPass would generate a complex password. The default password length is 15, but you can generate passwords up to 99 characters long. I also had the option to choose passwords with uppercase letters, lowercase letters, numbers, symbols, and any combination of the above. The only thing it was missing was the ability to generate passphrases like you can with NordPass and Bitwarden.
The main way to access the password generator is through the browser extension. There is no way to generate passwords from within the desktop app or web-based dashboard, which is a bit disappointing. However, LastPass has a distinct password generator on its website. It comes with a few additional options — in addition to selecting the types of characters you want to be included, the website lets you make passwords that are ‘easy to say’ or ‘easy to read’, which is great. Passwords that are easy to say have no special characters or numbers, and passwords that are easy to read have no confusing characters (like “O” vs. “0” or “l” vs. “I”). Some of my passwords need to be easy to read — like my Wi-Fi password which gets shared with guests all the time — so I think this is a really cool feature. I just wish the browser extension’s password manager had this option.
Overall, LastPass makes creating secure passwords simple. The password generator pops up any time you click on the LastPass logo in the password field, and it offers a lot more functionality than many competing password managers.
Two-Factor Authentication (2FA) — Huge Range of Options + a Great Authenticator App
Two-factor authentication (2FA) requires users to verify their identity with a second form of authentication like a code or a fingerprint scan. Once enabled, you’ll need to provide your master password and enter a code or scan your fingerprint whenever you want to log into your account. This added layer of security ensures that a hacker can’t access your password vault even if they somehow knew your master password. Note that there are now also passwordless authentication options with LastPass, which negate the need to enter your master password at all — you can read more about that below.
LastPass offers a wide variety of 2FA options. It’s compatible with third-party authenticator apps like Google Authenticator, Microsoft Authenticator, Duo Security, and the now-defunct Toopher (although Salesforce has acquired Toopher and it’s no longer accepting new users, those who installed the Toopher app before the acquisition can continue using it with LastPass).
All LastPass plans also include LastPass’s Authenticator mobile app — it’s available for Android and iOS and supports 3 different authentication methods, including 6-digit passcodes, SMS сodes, and push notifications. LastPass’s premium plans also include compatibility with the USB authenticator YubiKey and fingerprint and smart card readers (free users can use YubiKey for passwordless login, but not for multi-factor authentication).
Setting up LastPass’s 2FA is very easy. You can find the list of supported options by clicking on Account Settings > Multifactor Options. When you choose an option that you want to use, just click on the Edit button, and LastPass will provide you with setup instructions.
LastPass Authenticator can be used as a code generator, too. For example, I connected LastPass Authenticator with my Google account — so to sign into my Google account, I had to use LastPass Authenticator as a second factor of authentication. However, note that LastPass Authenticator is listed under Google Authenticator on the verification screen, which is slightly odd.
LastPass also lets you set up trusted devices — if you don’t want to use two-factor authentication on a specific device, you can mark it as trusted, and LastPass won’t ask you to type in a code or use a fingerprint on that device for 30 days.
Overall, LastPass’s 2FA options are among the best on the market. It supports a huge number of authenticator apps, as well as other options like USB authentication and fingerprint/card reader. Even top competitors like Dashlane don’t have such an extensive range of 2FA options. And LastPass offers its own Authenticator app which you can use to log into your LastPass vaults and secure other accounts that support two-factor authentication.
Sharing Center — Simple Password Sharing With Other LastPass Users
LastPass makes it easy to share passwords and data with other users. To share an item, simply click on the sharing button next to any entry from your web dashboard or mobile app (you can’t share via the desktop app, unfortunately). A new window will appear, and all you have to do is enter the email address of the person you want to share the entry with. You can choose whether or not the recipient can view the password.
You can also share one or more items via the Sharing Center, by clicking on the red ‘+’ button.
LastPass’s sharing function worked flawlessly in my tests. I shared a couple of passwords with a colleague who already had a LastPass account. After receiving an email from LastPass that informed him of the password share, my colleague logged into his LastPass account and accepted the passwords I’d shared with him. Because I chose not to let my colleague view the shared passwords, he could only use them (without seeing what the actual passwords were).
LastPass also lets you revoke access to an entry at any time. All you have to do is go to the Sharing Center and click on the ‘x’ button next to an entry, and the password recipient will no longer have access to that entry.
Even LastPass Free lets you share passwords, but only with 1 person (Dashlane Free on the other hand lets you share with unlimited Dashlane users). I think it’s great that you can share passwords at all on LastPass’s free plan, but to share with multiple people, you need LastPass Premium. LastPass Families also lets you share an unlimited number of folders with up to 5 family members.
Overall, LastPass makes password and data sharing very simple, and I really love that you can conceal shared passwords (so recipients can use the passwords, but not actually see them) and revoke access at any time.
Security Dashboard — Identify & Fix Weak Logins
LastPass’s Security Dashboard offers a security score and dark web monitoring. The security score audits the strength of all the passwords in the LastPass vault, whereas dark web monitoring alerts you if the emails stored in the vault have been compromised in a data breach.
LastPass’s security dashboard assigns you an overall security score for all of your passwords based on how old they are, how strong they are, and whether they’ve been repeated. It also lets you know if any passwords have been potentially breached. You can increase your score by strengthening or changing those passwords, or by enabling two-factor authentication.
I added several weak and duplicate passwords to my LastPass vault — and the security score feature identified all of them. To increase my security score, LastPass gave me the option to launch the sites where weak passwords had been found and change them manually.
LastPass uses Enzoic’s database for its dark web monitoring, which checks to see if any of the stored emails in a vault have been leaked on the dark web. During my tests, LastPass alerted me that one of my online accounts had been compromised in a data breach, and it also informed me which data was leaked (email, password, phone number, and name). I could then manually change the password for the compromised account. While LastPass’s dark web monitoring is not quite as in-depth as Dashlane’s, it’s still pretty good. It’s also great that you get access to this feature even if you’re using the free version of LastPass.
Overall, I really like LastPass’s Security Dashboard — it made it very easy for me to monitor how good my overall password security practices were and quickly make any changes if necessary. During my tests, LastPass identified all of my weak passwords, and it also alerted me that one of my test emails was involved in a data breach. While LastPass’s Security Dashboard isn’t a unique feature, it’s much more intuitive and easier to use than most competitors.
Account Recovery — Many Ways to Regain Access to Your Vault
LastPass offers many options to recover your LastPass account if you forget your master password. Some password managers offer one or two account recovery options, but LastPass offers far more than most competitors — and all of them are very easy to set up and use. Options include:
- Mobile account recovery. If you forget your master password, you can easily confirm your identity using either Touch ID or Face ID on the mobile app login screen, and then set a new master password. This works for both iOS and Android devices. As soon as you download the LastPass mobile app, LastPass will prompt you to enable biometric logins — all you have to do is scan your fingerprint or face.
- Master password hint. If you lose your master password, LastPass can send a master password hint to the email address registered with your LastPass account. You can set up a master password hint when creating a LastPass account, when changing your master password, or you can manually enter the hint in Account Settings.
- SMS recovery. You can set up a recovery phone in Account Settings, and if you forget your master password, LastPass will send a code to the provided phone number.
- Restore your previous master password. You can recover your account with your old master password, but only if the password change was made within the last 30 days. However, your account will be restored to how it was when you changed passwords, meaning that some recent data may be lost.
- Recovery one-time password. Every time you log into LastPass via a browser extension, LastPass creates a recovery one-time password which can be used to reset your master password.
I really like all of LastPass’s account recovery options — I tried all of them, and I was able to recover my account and set up a new master password in 1 minute or less, no matter which recovery option I used. LastPass is one of the rare password managers that offers many account recovery options (some top password managers like Sticky Password don’t have any). If you ever happen to forget your master password, LastPass makes it incredibly easy for you to gain access to your vault.
Emergency Access — Easy Process to Assign a Trusted Contact
Emergency access lets you assign a trusted contact who can access your LastPass vault if necessary. To set up emergency access, you only have to type in the email address of your trusted contact and select a waiting period — from “immediately” up to “30 days”.
The emergency access feature is very easy to use. I tested this feature by assigning my best friend as an emergency contact, and I chose to immediately give him access to my vault. My friend received my invitation, accepted my request, and was immediately able to see all of my LastPass entries in his LastPass vault. If you set a longer waiting period, you can deny access to your LastPass vault within the specified waiting period.
If you choose any option other than immediate access, your emergency contact can request access via their LastPass account. Once the request is made, you will have that amount of time to decide whether to grant them access or not. If you never respond, they will automatically get access to your vault when the time elapses.
You can also revoke access to your vault at any time, and you can opt out at any time if another LastPass user nominates you as an emergency contact.
I would like to see LastPass include emergency access for specific logins and details — so emergency contacts can only view selected logins, not the entire contents of the LastPass vault. Password Boss has implemented this feature. But I don’t mind LastPass’s approach. It was very easy to set up and use LastPass’s emergency access, and I could choose to deny my friend access to my vault at any point.
Additional Features — A Good Range of Useful Extras
In addition to the features described above, LastPass also has useful extras, like:
- Country restriction.
- One-time passwords (OTPs).
- Passwordless options.
- Never URLs.
- Equivalent Domains.
LastPass’s country restriction feature is really useful — it lets you choose from which countries you’re allowed to access the LastPass vault. By default, you can access your LastPass login from any country in the world, but if you want to add another layer of security to your account — potentially preventing hackers from other countries from gaining access to your vault — you can set up country restrictions.
It’s important to remember that you need to update country restriction settings when traveling to another country, otherwise you won’t be able to access your vault when you’re abroad. Also, if you often use a VPN, you should make sure that the countries with the server locations you connect to can access your vault.
LastPass also has the option to generate one-time passwords — these can be used as an extra security measure when logging into your LastPass account from a device you don’t trust. One-time passwords are generated after you log into your account, and you can print or write them down. When you’re logging into your LastPass account from an unsecured device, you then don’t have to use your master password — instead, you can log in with the previously generated one-time password. Keep in mind that you can use each one-time password only once. So, even if someone found out your previously used one-time password, they wouldn’t be able to enter your LastPass vault.
The passwordless options tool removes the requirement to enter your master password on your device. Instead, you can use the LastPass Authenticator, your biometrics (fingerprint or face ID), or a USB security key to gain immediate access to your vault.
You can use Never URLs to turn specific LastPass features off for specific sites. Go to Account Settings in the web app, navigate to the Never URL tab, and you can make it so LastPass will never ask to save logins for that site or never initiate auto-fill. There are other options, too — you can even change your settings to never prompt any action at all on specific sites. This is good if other people may use your device, and you don’t want them to have one-click access to your accounts, or if there are accounts you just don’t want associated with your password manager.
Another convenient tool that advanced users may find useful is Equivalent Domains, which lets you use the same login for companies that use the same login service. For instance, you can set this up for Disney.com and Disneyplus.com. LastPass provides a list of global equivalent domains but you can manually enter your own.
I really like these additional features. It’s a shame that LastPass got rid of the credit monitoring feature, but I really like the country restrictions (though 1Password has a similar tool that is more streamlined). I also like that you can generate one-time passwords for logging into your LastPass account from a device you don’t trust, which prevents keyloggers from capturing your master password.
LastPass Ease of Use & Setup — Simple & Intuitive With a Handy Tutorial
How to Install LastPass (Just 3 Simple Steps):
- Sign up for LastPass. Choose the plan that’s right for you and create your account. During the initial setup, you will create a master password, which is crucial for accessing your vault. Keep this password secure, as it’s essential for your account’s safety.
- Download and install the LastPass app & browser extension. After creating your account, download the LastPass desktop application and the browser extension from their respective download pages. The installation process is straightforward — simply follow the on-screen instructions to complete the setup on your devices.
- Launch LastPass. Open the LastPass app on your desktop or access it via the browser extension using your master password. Now you’re ready to start adding, managing, and securely storing all your passwords, financial details, and other sensitive data.
Installing and setting up LastPass is very simple. To create a LastPass account, you need to enter an email address and select a master password that is at least 12 characters long, and has at least 1 number, 1 lowercase letter, 1 uppercase letter, and 1 special character or symbol. You can’t create a master password that is identical to your email address.
LastPass provides a short explanation of what makes a strong master password. It advises you to create a totally random password like ‘r50$K28vaIFiYxaY. I was provided with a link to LastPass’s in-browser password generator, so this was super easy. I was pleased to discover that even if your password meets all the requirements, LastPass won’t let you use one detected in breaches.
Next, I was prompted to install the browser extension. The browser extension installation was quick and easy — taking just one click.
When I installed the browser extension, I was immediately taken to the web vault. You can also download a desktop app for Windows from LastPass’s website or the Microsoft Store, but I found it much more convenient to use the web vault. Plus, when you use the web vault, you can access all of your passwords from any computer. The only downside is that you can’t use LastPass to automatically log into apps if you don’t have the desktop version installed.
On opening the web vault for the first time, LastPass offers some guidance — it shows you how to save a password, asks you to try out auto-fill, and provides a brief tour of the vault, which explains what most of LastPass’s features do.
I like how easy it is to set up passwordless logins with LastPass — you can do it from your web vault in just a few clicks. Find Account Settings in the bar on the left of the page, then click on the Passwordless Options tab. LastPass will walk you through the rest and provide you with 3 passwordless options: the LastPass Authenticator app, biometrics (Windows Hello or Touch ID if you’re using a Mac), and a USB security key. You can also find links to the Account Settings tab in the browser extensions, but for some reason there’s no way to get there from the desktop apps.
I tested the biometrics feature on my Mac, and it worked perfectly. To set it up, I had to input my master password, then I was asked for my phone number to receive a verification code. Once I typed in the code and completed the setup, LastPass gave me the option to log out and try out the biometric login feature. I logged out and was able to log back into my vault with my Touch ID seamlessly.
I really like that LastPass includes a quick tutorial on how to use its features — this is very useful for non-technical users. However, I don’t like that LastPass doesn’t recommend that you import passwords after you’ve finished setting up your account. Still, there are two simple ways to import passwords to LastPass’s vault: you can import your existing passwords from the dashboard or you can use the browser extension.
LastPass supports importing data from many major password managers — including 1Password, Dashlane, and a handful of others. You can also import passwords from Google Chrome and other popular browsers. However, LastPass doesn’t let you directly import passwords like you can with Keeper. It’s not a big deal, but the fact that Keeper lets you do this for certain password managers is a nice touch.
I found using LastPass to be very easy. I really appreciate that LastPass provides in-app instructions on how to save passwords, use the auto-fill function, and access all of the other features in the vault. Advanced users will like that LastPass offers a ton of features, and I’m pretty confident that even non-tech-savvy users will find LastPass simple to use.
LastPass Mobile App — Good Apps for Android & iOS
LastPass offers mobile apps for iOS and Android. On both my iPhone and Android, all I needed to do was download the app and enter my email and master password. The app is highly secure and comes with all the major features you get with the desktop version.
LastPass asked me to authenticate my identity with the LastPass Authenticator as soon as I entered my email and master password (because I had already set up two-factor authentication in my web vault). LastPass then prompted me to turn on biometric logins to unlock my vault, also informing me that I could use biometric logins as an account recovery option.
I found it easy to set up biometric login on my mobile devices. I set it up on both my iPhone 12 and Infinix Note 8i, and I could easily log into my account with my face ID and fingerprint, respectively.
And this was it — the setup was complete! I could then view all of my vault’s contents, including passwords, secure notes, addresses, and payment cards. I found it very easy to add, edit, and share items — all of the essential LastPass features are the same on mobile and on the web app.
During my tests, LastPass’s auto-fill option worked perfectly every time. I also like that LastPass offers auto-fill for addresses and credit cards.
The Security tab includes LastPass’s password generator, emergency access, a security challenge which gives you an overall password security score, and a security dashboard which only informs you that you can use this feature on your desktop computer.
Unfortunately, the Sharing Center on mobile is pretty useless for individual users — you can use it to add shared folders, but this feature is only available for family users.
Overall, though, I found LastPass’s iOS and Android apps incredibly easy to use. While the mobile apps are a bit different than the web vault, locating and using all of the features is very simple. Many other password managers either don’t have mobile apps or they have really bad ones — and even decent offerings like Sticky Password’s mobile apps aren’t as feature-rich and intuitive as LastPass’s. It’s nice to see LastPass paying attention to its mobile users.
LastPass Customer Support — Good Support Options for Premium Customers
LastPass provides a range of customer support resources. Its support center is extensive, featuring numerous training videos, “How To” guides, and FAQs. There’s also a fairly active community forum and chat, email, and phone support for premium customers.
For immediate questions, LastPass provides a chatbot on its official website. However, it’s fair to say that the chatbot is very limited — providing basic responses and completely unable to answer more complex inquiries. In comparison to the helpful, multi-language live chat support offered by competitors like Dashlane, LastPass’s chatbot is inadequate.
Accessing email support from LastPass is simple enough. All you have to do is log into the support center and click Contact Us in the top right corner. You’ll find a link to a form you can use to initiate contact with support staff. Unfortunately, this email support is only available to Premium, Teams, and LastPass Business subscribers, with the latter two plans getting access to 24/7 email support. On a positive note, when you do manage to submit your question, the response time is typically just over 5 hours, which is pretty swift.
One major advantage for paid subscribers is the inclusion of phone support, a feature not commonly found among password managers. Though you don’t get a direct line (you have to send a request through the support center and wait for LastPass to give you a call), I think it’s great that LastPass includes phone support. When I tried it, I got a call back after just a few minutes, the rep was friendly, and they helped me solve my technical issues in short order.
In addition to the chatbot, premium customers can also talk to a human. Oddly enough, LastPass doesn’t really highlight this on the main support page. But I found that I could ask the chatbot to put me through to a human. When I tried this during US working hours, I was put through to a helpful agent in less than a minute. My question was answered right away, but I find it odd that they don’t publicize this avenue of support or let users know when it’s available.
LastPass also has 3 X (formerly Twitter) accounts: one notifying about LastPass service outages and resolved issues, another for providing live support Monday to Friday 9am–5pm ET, and the third posts general blog posts and updates about LastPass. However, I couldn’t find a direct link to LastPass’s customer support X account from the website. But I found it by clicking on the Status link on the LastPass website, which took me to the “status update” account — and then that account linked me to the live support one… not exactly straightforward! I submitted a question to LastPass’s live support X account outside of working hours and received an answer in about 12 hours, so this option is OK to use for not-so-urgent questions.
LastPass needs to make it simpler to access its customer support. The community forum is easy to find, as is email and phone support assuming you have a subscription. But the existence of human chat support is almost covered up, as are the helpful X accounts. If you know where to look, LastPass offers great support.
What LastPass Can Do Better — A Sleeker Interface & Better Customization
LastPass is pretty solid overall, but there are a few things that it can do better. First off, the interface feels a bit dated. It’s functional, sure, but when you compare it to some of the newer, sleeker designs of other password managers such as 1Password or Dashlane, LastPass looks a little behind the times.
Furthermore, while it’s really nice that LastPass has an authenticator, I don’t like that LastPass Authenticator is a separate app on mobile. I find this a bit annoying, having to juggle between two apps instead of having everything in one place. It just seems like an unnecessary extra step.
Something else that can be improved is the customization options for generating passwords. The most customizable generator can only be found on a standalone page on LastPass’s website. The browser extension could also create easy-to-read and easy-to-say passwords. But why stop there? LastPass should add a password generator to the desktop app and web dashboard.
LastPass can also add passphrases to its generator, which is something I really like about 1Password and RoboForm. Passphrases are great because they’re secure but also easier to remember than a random string of characters. It’s a feature I’d definitely like to see in LastPass.
Overall, LastPass does the job well, but these little tweaks would make it even better for me.
Is LastPass Any Good in 2024?
Yes, LastPass is safe, secure, and easy to use. It uses bank-grade 256-bit AES encryption to ensure all passwords are stored safely, it has a zero-knowledge policy, and it includes many advanced multi-factor authentication options for extra layers of security.
LastPass also has several advanced security features — including secure password sharing, password strength auditing, dark web monitoring, emergency access, multiple recovery options, and a good mobile app.
And LastPass’s interface is very easy to navigate. I had no issue adding, editing, or customizing passwords and other data in the web vault or on the mobile app, and the browser extension made it incredibly easy for me to auto-save and auto-fill logins.
While I really like LastPass, I do have a couple of minor complaints. I’d like to see LastPass improve its password importing process, and it would be great if there was an easier way for users to contact customer support and use the fully-featured password generator.
That said, LastPass is one of the best password managers on the market. It’s a great choice for both beginner and tech-savvy users, it has a wide range of additional tools that most other password managers don’t offer, and it’s pretty affordable. LastPass Free is one of the best free password managers out there, with unlimited storage on unlimited mobile or computer devices and one-to-one password sharing. LastPass Premium adds tons of great features, including emergency access, cloud storage, and advanced authentication features. LastPass Families is also one of the better family plans, coming with a family manager dashboard and unlimited sharing between up to 6 plan members. LastPass doesn’t have a money-back guarantee, but it does have a risk-free 30-day trial on its premium plans.
Frequently Asked Questions
Is LastPass safe?
Yes, LastPass is safe. It has a zero-knowledge policy, meaning even the LastPass team can’t access, view, or share the data stored in your vault. And LastPass uses bank-grade encryption (256-bit AES) and TLS certification to protect all data stored in your LastPass vault.
LastPass also includes a range of extra security options to ensure all passwords are safe, including:
- Advanced multi-factor authentication options.
- Touch ID and Face ID verification.
- Options to only allow logins from specific countries.
That said, LastPass did suffer a major data breach in 2022, and this wasn’t the first time its servers have been hacked. The security measures mentioned above should be enough to ensure customer data stays safe (so long as users have set up strong master passwords), but there are some great alternatives to LastPass that have never been hacked.
Does LastPass have a free version?
Yes. LastPass has a really good free version, which includes:
- One secure vault that can be accessed and managed from multiple devices.
- Unlimited password storage.
- Secure notes storage.
- Dark web monitoring.
- Password generator.
- One-to-one password sharing.
- Two-factor authentication.
- LastPass Authenticator.
- Passwordless login.
You can choose whether you want to use LastPass’s free plan on your mobile devices (Android phones and tablets, iPhones and iPads, and smartwatches) or your computers (Windows, Mac, and Linux computers, Windows tablets, and the LastPass browser extension).
Does LastPass have account recovery options?
Yes. In fact, LastPass has more account recovery options than any other password manager. You can recover your LastPass account with:
- Master password hint — receive an email with your pre-set master password hint.
- Mobile account recovery — use fingerprint/face ID on your mobile to confirm your identity.
- One-time recovery password — access your account with a recovery password when using the same computer and browser.
- SMS recovery — receive an SMS with a unique code to reset your master password.
- Reverting to the previous master password — access your vault with your old master password (if the change was made no longer than 30 days ago).
LastPass Premium also includes an emergency access function, which enables you to assign an emergency contact to retrieve the data in your vault if you can’t access it.
Can I share a password from my LastPass vault with other people?
Yes. You can easily share logins and other data from your LastPass database with anyone by sending them an email invite. Users without LastPass will need to create their own LastPass account to access the information you share with them.
LastPass Free allows you to share any password entry with one other user, while LastPass Premium and all other paid plans include password sharing with multiple users.
One of the cool things about LastPass’s sharing function is that you can share passwords without the recipient being able to view the password — meaning they can use the password without knowing what the password actually is!
What are the disadvantages of LastPass?
While there are many things I like about LastPass, there are a few drawbacks. Importing passwords isn’t as intuitive as with other top password managers. Other password managers provide one-click options to complete this process, while the process is a little more complicated with LastPass. Another thing that bothers me is you can’t access the password generator when entering a password in your vault.
The company’s response to data breaches in 2022 was also not nearly as transparent as I would have liked. But that said, LastPass is still an excellent password manager with a lot of really good features, and it offers a great value.
Can LastPass be hacked?
Unfortunately, LastPass has suffered security issues in the past. In 2021, LastPass users were victims of credential stuffing attacks, which is when bad actors use usernames and passwords leaked in a data breach to try and log into a user’s other accounts. And in 2022, LastPass customers’ password vault information was exposed during a major data breach. All this highlights the fact that you need to use a strong and unique master password.
We still recommend LastPass as one of the best password managers on the market — its 256-bit AES encryption ensures all user data is encrypted and decrypted on the device level, and users’ master passwords aren’t stored on its servers. This means that the hackers couldn’t see user passwords. But there are other good options for customers concerned about LastPass’s security issues. For example, 1Password and Dashlane are excellent products and have never suffered a data breach.
Is there anything better than LastPass?
LastPass is a great password manager, but it’s not my favorite. It’s very easy to use, making it a really good choice for new users. Plus, LastPass is very affordable (and has one of the best free plans) and offers a lot of features.
However, my top choice for a password manager in 2024 is 1Password, which has a much cleaner security track record (it’s never been breached), offers more features like Travel Mode and Privacy Cards, and is better for families — you can add as many additional people to your account as you like for a small fee.
Can I trust LastPass?
For the most part, yes. LastPass has all of the industry-standard password manager security features. These include a zero-knowledge policy, which prohibits LastPass employees from viewing any of your data, 256-bit AES encryption, which means all of the data in your password vault is undecipherable to prying eyes, and multiple 2FA options.
However, LastPass has a cloudy history of falling victim to cyber attacks. It suffered breaches in 2021 and 2022, although LastPass claimed no user data was stolen. Still, this concerns me a bit, especially when other top password managers like 1Password, Dashlane, and RoboForm have never suffered a breach.