Security researcher Tavis Ormandy, of Google’s Project Zero, notified LastPass of the bug. The flaw could have allowed hackers on malicious websites to entry customers’ credentials entered on the earlier web site. Fortunately, there is not any cause to imagine the bug was exploited, and whereas it solely impacted Chrome and Opera browsers, LastPass patched all browser extensions.
This is not the primary time LastPass has fastened a safety flaw. A pair years in the past, it discovered a vulnerability in its fingerprint verification. Before that, LastPass fastened safety issues on Chrome and Firefox.
This does not imply that password managers are unreliable, simply that they don’t seem to be foolproof. Password managers are nonetheless a good thought, however they don’t seem to be a excellent safety measure on their very own. They ought to be used together with multi-factor authentication, and you should hold them up to date.