Brute force attack on Dashlane user accounts
Privacy Guides Community [Unofficial]
June 3, 2026
Starting on Sunday, May 31, 2026, an external party launched a brute force attack against certain Dashlane user accounts. The goal of the attack was to brute-force two-factor authentication (2FA) protections to allow the attacker to register new devices on existing user accounts.
Brian Krebs also provides some more information on his Mastodon account.
Infosec Exchange – 1 Jun 26
BrianKrebs (@briankrebs@infosec.exchange)
Dashlane says services are all back up, and that the account weirdness was caused by brute force attacks, "resulting in the suspension of those accounts as part of Dashlane’s built-in security measures. The affected accounts have now been...
Discussion in the ATmosphere