Dashlane Hit by Brute-Force Attack as Users Report Account Lockouts

Dashlane temporarily locked some users out of their password manager accounts after a brute-force attack triggered the company’s automated security protections.

The company says there is no evidence that Dashlane itself was breached or that its internal systems were compromised. Instead, attackers reportedly targeted user accounts through repeated login attempts from unfamiliar devices and locations.

According to reports highlighted by BleepingComputer, several users began receiving unexpected verification emails for new device registrations. The emails included one-time verification codes used to approve new logins.

Users receive unexpected verification emails

Many affected users said they never requested the verification codes.

Some initially believed the messages could be phishing attempts because the login notifications appeared without warning. Reports about the issue started appearing on Reddit before Dashlane publicly acknowledged the incident.

Dashlane later confirmed that some accounts had been targeted in an external brute-force attack campaign.

The company says its automated protections responded by temporarily suspending affected accounts to prevent potential account hijacking attempts.

Dashlane says accounts were suspended automatically

Dashlane explained that the lockouts were part of its normal security response system.

The company later restored access to suspended accounts after reviewing the activity. However, some users continued reporting login problems even after Dashlane marked the incident as resolved, according to additional Reddit reports.

Others criticized customer support response times during the outage.

Dashlane has not disclosed how many accounts were affected or provided technical details about the attackers behind the campaign.

Incident timeline

According to Dashlane’s status page, the company started investigating the issue on May 31 at 15:19 UTC. The incident was marked as resolved at 22:30 UTC the same day.

A follow-up update published on June 1 at 07:32 UTC said Dashlane was continuing to monitor the situation for lingering issues.

At the time of writing, Dashlane has not announced additional mitigation measures or confirmed whether the attack campaign is still ongoing.

The Dashlane incident comes during a busy week for cybersecurity news.

Windows administrators are also dealing with active exploitation of the critical Windows Netlogon vulnerability tracked as CVE-2026-41089. Microsoft recently patched the flaw, but security agencies now warn that attackers are exploiting it in the wild.

Microsoft also recently resolved a My Sign-Ins outage that prevented some users from accessing MFA setup and sign-in management features.

Separately, Microsoft quietly removed an older blog post that claimed built-in Windows 11 security protections were enough for most users.