HELP FILE

What is breach detection in LastPass?

LastPass currently offers breach detection that monitors employees’ email addresses/usernames for breaches. Once enabled by the “check for compromised user accounts” policy, LastPass will continuously check for breaches associated with the emails/ usernames in your employees’ Vaults.

LastPass partners with Enzoic (formerly known as PasswordPing) to offer breach detection. Enzoic manages a database of breached credentials, and once you turn breach detection on for your organization your employees’ emails/ usernames are continuously checked against this database. If Enzoic determines that any of their usernames have been compromised, LastPass relays this information to the user in the form of an email to the compromised account. They will be prompted to change the password for this account.

Note: LastPass admins are not able to see their employees' compromised accounts.

The following policies apply to the Security Dashboard:

  • Check for compromised user accounts – When enabled, all usernames/email addresses (that are currently enabled to be monitored via dark web monitoring) are checked against the database of breached credentials on an ongoing basis.
  • Disable PasswordPing checks – When enabled, this policy prohibits the checking of usernames/email addresses against the database of breached credentials.
  • Show security challenge score – Automatically reports security scores to the user and admins. This policy is enabled by default.