logo

Dashlane explains how attackers managed to download encrypted password vaults

ID: 6abc0f3c-eaac-5347-8fca-f2ca78d6e307

STIX ID: report--6abc0f3c-eaac-5347-8fca-f2ca78d6e307

Feed Name: Ars Technica Security (category)

Threat Score
50/100

Date Published: 2026-06-04

Date Updated: 2026-06-05

Author: Dan Goodin

...
...

The report describes an incident where attackers obtained encrypted Dashlane vaults; while strong, high-entropy master passwords make successful decryption unlikely, the risk rises if users used weak or commonly leaked master passwords. The report compares the event to the 2022 LastPass breach (where some vaults were ultimately decrypted due to unencrypted fields and weak hashing), criticizes Dashlane's initial communication, and recommends affected users change master passwords and vault contents as a precaution.

Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.