When LastPass reset their MFA security they locked their clients out as well as the threat actors.
LastPass users furious after being locked out due to MFA resets (bleepingcomputer.com)
Your takeaway
LastPass is a good way to keep your passwords secure – but you are giving LastPass or other password bank provider a responsibility you need to know they are up to.
Some clients do and some clients don’t.
I do not use a password. Here is my word on it:
Clive Catton MSc (Cyber Security) – by-line and other articles