LastPass Launches On-Device Mobile Smart Scanner for Credential Digitization
LastPass has launched a new "Mobile Smart Scanner" feature that uses on-device OCR to digitize handwritten or typed credentials, allowing users to import them directly into their password vaults.
LastPass has introduced a new feature called "Mobile Smart Scanner," designed to digitize physical or digital notes containing login credentials. By utilizing the camera on a mobile device, the tool extracts site URLs, usernames, and passwords from photographs of typed or handwritten text, allowing users to import them directly into their LastPass vault Help Net Security.
The technical mechanism relies on on-device optical character recognition (OCR) to process the images. According to the company, this design ensures that the scanning process remains local to the user's device. No images are uploaded to third-party services, nor are they stored or transmitted to LastPass servers for training or retention purposes, maintaining the company's "zero-trust" security architecture Help Net Security.
The feature is currently available in early access for Free, Premium, and Family plan customers. LastPass intends to roll out the capability to business customers later in 2026, with no additional cost for any user tier. To use the tool, customers select "Scan password" from the "New" item menu within the LastPass mobile app, point their camera at the credentials, and review the automatically generated entry before saving it to their vault Help Net Security.
LastPass developed this feature to address common, insecure credential management habits. Internal research and industry data cited by the company indicate that while the average user manages between 70 and 80 credentials, approximately 40% of people still record passwords in physical journals, notes applications, or on sticky notes. These practices are linked to security incidents, with 36% of consumers reporting at least one account compromise due to weak or stolen credentials Help Net Security.
By automating the import process, LastPass aims to reduce the friction associated with migrating credentials into a secure environment. Don MacLennan, CPO at LastPass, stated that the tool is intended to remove the effort required to secure scattered passwords, making strong security practices more immediate for both consumer and enterprise users Help Net Security.
This release reflects a broader industry trend toward simplifying password management to discourage the use of insecure, non-digital storage methods. As password managers compete to improve user onboarding and vault completion rates, the focus on privacy-preserving, on-device processing remains a critical differentiator for security-focused software providers. Future updates will likely continue to prioritize reducing the manual burden on users while maintaining strict data isolation protocols.