Reviews for LastPass Password Manager
LastPass Password Manager by LastPass
Review by random_reviewer
Rated 1 out of 5
by random_reviewer, 2 years agoI have used this extension for several years now, and am finally switching to something else; on my way out, wanted to warn others about why I'm leaving! TLDR: (1) it's no longer working for the purpose I want in terms of helping me log into websites; (2) its new auto-fill/auto-submit behavior is actively putting my login information at risk.
Long version:
I have heard things about data breaches, which has made me nervous, but the issue that pushed me over the edge out of using the service is usability.
The extension has always been a little clunky, not recognizing urls as equivalent even after I entered them as such, logging me out at random, etc., but there has been a recent update that has made the extension not functional on several levels
1: URL recognition and search: it has always been a little dicey about which urls it recognizes (compared to the url you save for the password), but is now significantly worse. This means not recognizing urls that it should, but also "recognizing" urls that don't correspond at all (think autofilling an old neopets password into gmail level of "???") This is made worse by the fact that searching the vault has gotten more difficult: the vault is taking longer to load (sometimes refusing to open entirely), and the search function within the vault is working even more poorly than it used to (I have had to manually search through the vault in the past, but am having to do it much more frequently.)
2: Auto-fill: the extension has started trying to auto-fill login information into websites. I tried to troubleshoot this and have in theory turned the feature off, but it keeps turning itself back on and auto-filling again - which is a problem, because (a) because it is not reliably recognizing websites from the password's url field, it is not reliably auto-filling the correct information (b) it is also doing this with some website fields that are not username/password fields. In addition to filling random fields with random information from my vault, it is not just auto-filling, but auto-SUBMITTING on several websites. I have ended up having to disable the extension to avoid being labelled a bot by the websites I visit; I am also nervous about the potential security implications of lastpass pulling username/password combos from my vault to place in random website fields and press submit. This seems like a really good way to accidentally publish/send my login information for something, which is exactly what I don't want to happen! Since I have now had to disable the extension to navigate the internet, and can no longer rely on it to help me log in, this extension is now both useless and potentially risky for me; giving a heads up to anyone considering installing it to reconsider or at least wait until they have pushed out another update!
Long version:
I have heard things about data breaches, which has made me nervous, but the issue that pushed me over the edge out of using the service is usability.
The extension has always been a little clunky, not recognizing urls as equivalent even after I entered them as such, logging me out at random, etc., but there has been a recent update that has made the extension not functional on several levels
1: URL recognition and search: it has always been a little dicey about which urls it recognizes (compared to the url you save for the password), but is now significantly worse. This means not recognizing urls that it should, but also "recognizing" urls that don't correspond at all (think autofilling an old neopets password into gmail level of "???") This is made worse by the fact that searching the vault has gotten more difficult: the vault is taking longer to load (sometimes refusing to open entirely), and the search function within the vault is working even more poorly than it used to (I have had to manually search through the vault in the past, but am having to do it much more frequently.)
2: Auto-fill: the extension has started trying to auto-fill login information into websites. I tried to troubleshoot this and have in theory turned the feature off, but it keeps turning itself back on and auto-filling again - which is a problem, because (a) because it is not reliably recognizing websites from the password's url field, it is not reliably auto-filling the correct information (b) it is also doing this with some website fields that are not username/password fields. In addition to filling random fields with random information from my vault, it is not just auto-filling, but auto-SUBMITTING on several websites. I have ended up having to disable the extension to avoid being labelled a bot by the websites I visit; I am also nervous about the potential security implications of lastpass pulling username/password combos from my vault to place in random website fields and press submit. This seems like a really good way to accidentally publish/send my login information for something, which is exactly what I don't want to happen! Since I have now had to disable the extension to navigate the internet, and can no longer rely on it to help me log in, this extension is now both useless and potentially risky for me; giving a heads up to anyone considering installing it to reconsider or at least wait until they have pushed out another update!