For the LastPass database, the attacker will not need the user’s Windows login credentials of macOS account password. All that’s actually required is the file containing the encrypted password database, which can be easily obtained from the forensic disk image. Neither Windows credentials nor master password are required.
Source: Breaking LastPass: Instant Unlock of the Password Vault | ElcomSoft blog
Was this post helpful?
Let us know if you liked the post. That’s the only way we can improve.