![]() ![]() In an advisory, LastPass acknowledged the problem but downplayed the seriousness of the issue. It said the affected browser extension software should be updated automatically. “To exploit this bug, a series of actions would need to be taken by a LastPass user including filling a password with the LastPass icon, then visiting a compromised or malicious site and finally being tricked into clicking on the page several times,” LastPass explained. ![]() “This exploit may result in the last site credentials filled by LastPass to be exposed. We quickly worked to develop a fix and verified the solution was comprehensive with Tavis. “We have now resolved this bug no user action is required and your LastPass browser extension will update automatically. “Additionally, while any potential exposure due to the bug was limited to specific browsers (Chrome and Opera), as a precaution, we’ve deployed the update to all browsers,” LastPass concluded. Security bugs of one sort of another affecting LastPass are far from unprecedented.įor example, in June 2018 developers of the password manager software came under fire over security concerns about a subdomain autofill feature. Start by getting Google Chrome and installing the Give Me CRX plugin found at the chrome extensions store. More recently a server failure last November left many users unable to log into their password vaults. Then, search in the extensions store, LastPass, and click on it. Choosing to import passwords from Google Chrome Password Manager Now you should see that a new tab is opened, where LastPass shows you all the passwords saved by the browser that you can import. Right click on the header, and select 'Get CRX of this extension'. Select the ones you want, or press Select All if you want them all, and then click or tap on Import. ![]() Download the CRX, and rename it something like lastpass.zip. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |