A new phishing wave targets LastPass users with breach notifications emails. These emails urge recipients to download a “security patch” but actually contain malware that harvests credentials and spreads further infections. To avoid this scam, verify email authenticity, use multi-factor authentication, and monitor for unusual PowerShell activity.
Source: https://cybersecuritynews.com/beware-of-fake-lastpass-hack-emails