Is Lastpass Safe?
Lastpass — Nerq Trust Score 65.2/100 (B- grade). Based on analysis of 2 trust dimensions, it is generally safe but has some concerns. Last updated: 2026-05-31.
Use Lastpass with some caution. Lastpass is a password manager with a Nerq Trust Score of 65.2/100 (B-), based on 3 independent data dimensions. Below the recommended threshold of 70. Security: 90/100. Popularity: 100/100. Data sourced from multiple public sources including package registries, GitHub, NVD, OSV.dev, and OpenSSF Scorecard. Last updated: 2026-04-01. Machine-readable data (JSON).
Is Lastpass safe?
CAUTION — Lastpass has a Nerq Trust Score of 65.2/100 (B-). It has moderate trust signals but shows some areas of concern that warrant attention. Suitable for development use — review security and maintenance signals before production deployment.
What is Lastpass's trust score?
Lastpass has a Nerq Trust Score of 65.2/100, earning a B- grade. This score is based on 2 independently measured dimensions including security, maintenance, and community adoption.
What are the key security findings for Lastpass?
Lastpass's strongest signal is popularity at 100/100. No known vulnerabilities have been detected. It has not yet reached the Nerq Verified threshold of 70+.
What is Lastpass and who maintains it?
| Author | Unknown |
| Category | Password Managers |
| Source | N/A |
Security Assessment
Breach History
LastPass suffered major data breaches in August and December 2022. Encrypted vault data and customer information were stolen. While master passwords were not directly compromised, the stolen encrypted vaults remain vulnerable to brute-force attacks for users with weak master passwords.
Encryption
Lastpass uses AES-256-CBC (industry standard), PBKDF2-SHA256 (key derivation).
Based in United States. No published independent audit.
Lastpass Across Platforms
Same developer/company in other registries:
Similar Password Manager by Trust Score
Safety Guide: Lastpass
What is Lastpass?
Lastpass is a password manager — LastPass is a freemium password manager owned by GoTo. Major data breaches August and December 2022 — encrypted vault data and customer information stolen. AES-256 encryption with PBKDF2-SHA256. Rebui.
How to Verify Safety
Check breach history. Verify encryption standard. Review independent audit status.
You can also check the trust score via API: GET /v1/preflight?target=LastPass
Key Safety Concerns for password manager
When evaluating any password manager, watch for: breach history, encryption standard, audit status, jurisdiction.
Trust Assessment
Lastpass has a Nerq Trust Score of 65/100 (B-) and has not yet reached Nerq trust threshold (70+). This score is based on automated analysis of security, maintenance, community, and quality signals.
Key Takeaways
- Lastpass has a Trust Score of 65/100 (B-).
- Review carefully before use — below trust threshold.
- Always verify independently using the Nerq API.
Detailed Score Analysis
| Dimension | Score |
|---|---|
| Security | 90/100 |
| Maintenance | 50/100 |
| Popularity | 100/100 |
| Quality | 50/100 |
| Community | 35/100 |
Based on 5 dimensions. Data from multiple public sources including package registries, GitHub, NVD, OSV.dev, and OpenSSF Scorecard.
What data does Lastpass collect?
Lastpass has a privacy score of 50/100. Review the documentation and privacy policy for data handling details.
Full analysis: Lastpass Privacy Report · Privacy review
Is Lastpass secure?
Security score: 90/100. This meets the recommended security threshold for production use.
Nerq monitors this entity against NVD, OSV.dev, and registry-specific vulnerability databases for ongoing security assessment.
Full analysis: Lastpass Security Report
Lastpass Across Platforms
Same developer/company in other registries:
How we calculated this score
Lastpass's trust score of 65.2/100 (B-) is computed from multiple public sources including package registries, GitHub, NVD, OSV.dev, and OpenSSF Scorecard. The score reflects 5 independent dimensions: security (90/100), maintenance (50/100), popularity (100/100), quality (50/100), community (35/100). Each dimension is weighted equally to produce the composite trust score.
Nerq analyzes over 7.5 million entities across 26 registries using the same methodology, enabling direct cross-entity comparison. Scores are updated continuously as new data becomes available.
This page was last reviewed on May 31, 2026. Data version: 0.0.
Full methodology documentation · Machine-readable data (JSON API)
Frequently Asked Questions
Is Lastpass Safe?
What is Lastpass's trust score?
What are safer alternatives to Lastpass?
How often is Lastpass's safety score updated?
Can I use Lastpass in a regulated environment?
Popular in Password Managers
See Also
Disclaimer: Nerq trust scores are automated assessments based on publicly available signals. They are not endorsements or guarantees. Always conduct your own due diligence.