Password manager Dashlane suffered brute-force attack resulting in compromised user vaults

Dashlane, a widely used password manager and digital wallet, experienced a brute force attack beginning on May 31, 2026. The incident targeted two-factor authentication protections with the aim of enabling unauthorized device registration on existing accounts.

During the attack, Dashlane's security controls automatically locked user accounts that were targeted, preventing further unauthorized access attempts. Following these security actions, the company's internal teams were promptly alerted. Dashlane investigated and remediated the incident, which resulted in the temporary suspension of numerous user accounts. Access for these users has now been fully restored.

While assessing the breach, Dashlane reported that attackers were able to download encrypted vaults belonging to fewer than 20 personal plan users. The company has directly notified these individuals. For all other Dashlane customers, there is no indication of vault compromise.

Throughout the investigation, Dashlane found no evidence that its internal systems were compromised. As a result of security measures, traffic from threat actors was blocked, and accounts suspended or blocked due to the attack have been reactivated. It is noted that some users faced restrictions on registering new devices or using two-factor authentication to log in during the response phase.

To bolster resilience, Dashlane has implemented enhanced security controls and continues to strengthen its safeguards.