Can't make sense of Dashlane's vault theft notification? You're not alone.

by
Dan Goodin
from Ars Technica - All content on (#762Q0)

There's a lot that doesn't add up in a security advisory password manager Dashlane published Monday, warning that attackers managed to obtain 20 encrypted user vaults.

Starting on Sunday, May 31, 2026, an external party launched a brute force attack against certain Dashlane user accounts," the company said. The goal of the attack was to brute-force two-factor authentication (2FA) protections to allow the attacker to register new devices on existing user accounts."

Hello, Dashlane, anybody home?

A Dashlane user who received such a 2FA request provided this screenshot of the notification, which arrived on Sunday.

Read full article

Comments

External Content
Source RSS or Atom Feed
Feed Location http://feeds.arstechnica.com/arstechnica/index
Feed Title Ars Technica - All content
Feed Link https://arstechnica.com/
Reply 0 comments