Back

Dashlane Users Locked Out Amid Brute Force Attack

Severity: Medium (Score: 51.8)

Sources: Theregister, Feeds2.Feedburner, Bleepingcomputer, Cybersecuritynews

Published: 2026-06-01 · Updated: 2026-06-02

Keywords: brute, password, manager, dashlane, accounts, amid, attack

Summary

Dashlane, a password management service, faced a series of brute force attacks starting on May 31, 2026, leading to the temporary suspension of multiple user accounts. The attacks involved unauthorized attempts to register new devices using incorrect authentication tokens. Dashlane confirmed that these measures were part of their automated security response to protect user accounts from potential hijacking. Users reported receiving emails about account suspensions and suspicious login attempts from various countries, including Korea and Russia. Although Dashlane restored access to affected accounts by June 1, some users continued to experience login issues and reported unresponsive customer support. The company has stated that there is no evidence of a compromise of their internal systems. Dashlane is monitoring the situation and has implemented additional security measures to protect its users. Key Points: • Dashlane suspended user accounts due to brute force attacks attempting unauthorized access. • The attacks began on May 31, 2026, with users receiving notifications of suspicious activities. • Dashlane confirmed no internal system compromise, but some users still face login issues.

Detailed Analysis

**Impact** Multiple Dashlane users experienced temporary account suspensions and login issues due to brute-force attacks targeting their accounts. The exact number of affected accounts was not disclosed, but reports indicate a significant number of users across various geographies, including Korea and Russia, received unauthorized login attempt notifications. No evidence of compromise to Dashlane’s internal systems or user data was reported. Operationally, affected users faced access disruptions and delays in customer support response. **Technical Details** The attack involved brute-force attempts to bypass two-factor authentication (2FA) by repeatedly guessing authentication codes to register new devices on user accounts. Automated security controls triggered account suspensions after multiple failed login attempts. No malware, CVEs, or specific attacker infrastructure details were disclosed. The attack was detected and mitigated within hours, with Dashlane’s automated defenses blocking further unauthorized access attempts. **Recommended Response** Organizations using Dashlane or similar password managers should monitor for unusual login attempts and verify the legitimacy of account suspension notifications. Users should ensure 2FA is enabled and remain vigilant against phishing attempts impersonating security alerts. Dashlane and other service providers should review and enhance rate limiting and anomaly detection on authentication endpoints. No specific patches or IOCs were provided; defenders should focus on monitoring authentication logs and user reports of access issues.

Source articles (4)

  • Password manager Dashlane suspends customer accounts amid brute — Theregister · 2026-06-01
    Password manager Dashlane has disabled a number of user accounts as a precaution amid a spate of brute force attacks. It didn't specify the scale of the attack, although scores of users have queried t…
  • Brute — Feeds2.Feedburner · 2026-06-01
    Password manager Dashlane has confirmed that a brute-force attack targeting user accounts triggered temporary account suspensions and authentication issues. The company first acknowledged the incident…
  • Dashlane password manager users locked out by brute force attacks — Bleepingcomputer · 2026-06-01
    Multiple Dashlane users have been locked out of their accounts following brute-force attacks that attempted logins from distant locations and unknown devices. In a statement to BleepingComputer, the p…
  • Dashlane Password Manager User Accounts Locked Following Brute — Cybersecuritynews · 2026-06-02
    Dashlane has disclosed a security incident involving a large-scale brute-force attack targeting user accounts, beginning on May 31, 2026. According to the company, an external threat actor attempted t…

Timeline

  • 2026-05-31 — Brute force attacks initiated: Dashlane began experiencing brute force attacks targeting user accounts, prompting security measures.
  • 2026-05-31 — User accounts suspended: Affected users received emails about account suspensions due to multiple failed login attempts.
  • 2026-06-01 — Accounts restored: Dashlane confirmed that all affected accounts were restored after the investigation was completed.
  • 2026-06-01 — Dashlane updates status: Dashlane updated its status page, changing the incident from 'resolved' to 'monitoring' due to ongoing user issues.
  • 2026-06-02 — Ongoing user issues reported: Despite the resolution announcement, some users continued to report login problems and unresponsive support.

Related entities

  • Brute Force (Attack Type)
  • Phishing (Attack Type)
  • Dashlane (Tool)
  • Korea (Country)
  • Russia (Country)
  • T1110 - Brute Force (Mitre Attack)
  • T1566 - Phishing (Mitre Attack)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed