Starting on Sunday, May 31, 2026, an external party launched a brute force attack against certain Dashlane user accounts. The goal of the attack was to brute-force two-factor authentication (2FA) protections to allow the attacker to register new devices on existing user accounts.
Brian Krebs also provides some more information on his Mastodon account.
| Topic | Replies | Views | Activity | |
|---|---|---|---|---|
| Should I use Dashlane? | 16 | 1470 | November 21, 2024 | |
| Passwordless password manager | 6 | 592 | December 29, 2023 | |
| Zero-Day Clickjacking Vulnerabilities in Major Password Managers | 70 | 6073 | November 12, 2025 | |
| Do recovery codes defeat the purpose of 2FA? I think so | 7 | 750 | October 3, 2024 | |
| Preventing user password brute forcing? | 3 | 493 | April 29, 2025 |
Massive organizations are monitoring your online activities. Privacy Guides is your central privacy and security resource to protect yourself online.
Privacy Guides is a non-profit, socially motivated website that provides information for protecting your data security and privacy.
We do not make money from recommending certain products, and we do not use affiliate links.