I suspect that it was a random phishing attempt.

> Login attempt blocked

> Hello, Someone just used your master password to try to log in to your account from a device or location we didn't recognize. LastPass blocked this attempt, but you should take a closer look.

Looks fairly classic. Might want to look at the email headers, to see if it really came from LastPass.

I get about ten of these a day. Some are scarily well-done.

Most are for banks that I don't use, but I also get a lot of attempts to grab my AppleID. My Apple (mac.com) address is an OG address, and has been making the spammer circuit for over a decade. I suspect that I actually get hundreds of spams a day, but Apple is good at nuking most of them, before they reach my inbox.

I checked and the same information regarding the attempted login appears in my LastPass "Account History". I also talked to support and they've confirmed this.

Quick note that apple allows you to download a recovery code and disable all other account recovery mechanisms which I found incredibily soothing.

I sense sarcasm, but in case my sense is off, there is a webapp which allows you to log into your apple account and webapps are known to sometimes have security issues.

I'm pretty sure you can get a full login attempt history from them in the ui - can't verify though, don't use LP anymore.

Try a bogus attempt yourself with wrong PW, or from a cloud host/vpn/etc to verify the audit log you can access.

Assuming it does list your attempts, then yeah, it would have to be phishing/lp bug.

Yeah, thanks, I was finally able to find my Account History, and the foiled login from Brazil does appear there. So it seems like the email wasn't phishing.

Heh, I reached out to that same email literally earlier today to complain about their abysmal Android support, and I'm already a paying customer. I'm not happy with their non-response automated email and will be looking for a good alternative.