How is it safe to allow LastPass to pull in sites from my email and change passwords for those sites?

When adding sites from your email, LastPass asks for a temporary connection to scan for accounts. This connection allows LastPass to have two important pieces of information: your email address and websites where you have accounts. With temporary access to your email inbox, and those two pieces of information, LastPass is able to visit the website and click “Forgot Password?” for each account.

Once the email with the link to reset your password arrives in your inbox, LastPass activates it and generates a new, random password. The new password is simultaneously submitted on the website and saved to your LastPass vault, meaning LastPass never sees your password or has access to it.

When the process is complete, or if you cancel the process, LastPass drops the connection to your email inbox.

Still Having Trouble?
Look for answers in our vibrant customer-to-customer community help forums.
Forums
View your account information and view the status of previously submitted support tickets.
View Tickets
Submit a support ticket and we'll get back to you as soon as we can!
New Ticket

Please review these answers to your question:

Still Having Trouble?
Look for answers in our vibrant customer-to-customer community help forums.
Forums
View your account information and view the status of previously submitted support tickets.
View Tickets
Submit a support ticket and we'll get back to you as soon as we can!
New Ticket

Browse through our FAQs:

Quantcast