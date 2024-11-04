One of the most popular password managers out there, LastPass, is warning its customers not to fall for the latest scam campaign aimed directly at them.

In a blog post, the company explained scammers are targeting users via the Chrome Web Store. In the reviews section for LastPass’ Chrome add-on, the scammers are adding new content that directs the visitors to fake customer support.

Therefore, when victims who are having issues with the add-on visit the page, they might think that other users are helping them reach customer support directly. In reality, dialing the number shared there starts a conversation with the fraudsters, who will try to navigate the victims to a malicious website, and download malware.

Fake customer support

"Individuals calling this fake support number will be greeted by an individual asking what product they are having issues with and then a series of questions regarding whether they are attempting to access LastPass via a computer or a mobile device and what operating system they are using," explained LastPass.

"They will then be directed to the site dghelp[.]top while the threat actor remains on the line and attempts to get the potential victim to engage with the site, exposing their data."

Investigating further, BleepingComputer found the campaign’s goal is to get people to download ConnectWise ScreenConnect, a piece of remote support and access software that grants the attackers full access to the target computer. The publication also found that the phone number associated with this campaign was used in other similar campaigns, where crooks impersonated Amazon, Adobe, Facebook, YouTube TV, and many, many others. In other words, this is a well-organized team that has been impersonating major corporations and defrauding people for a while now.

As usual, the best way to defend against these attacks is to use common sense and double-check every piece of information found online.

