LastPass

Whoops! LastPass accidentally deleted its browser extension from the Chrome store. But it’s back now

Someone at LastPass must be feeling 5!ck as a p4rr0t right now, after human error meant that its browser extension was accidentally deleted from the Chrome web store.

Although an embarrassing goof, it’s something of a storm in a teacup security-wise.

LastPass users automatically updated to fix security vulnerability in browser extension

Popular password manager LastPass says that it has fixed a vulnerability in its Chrome and Opera browser extensions that could have potentially seen an attacker steal the username and password previously filled-in by the software.

LastPass has a secret major vulnerability – and, as yet, there’s no fix

The popular password management firm LastPass is working to fix major vulnerability in its software, responsibly disclosed to it by a security researcher.

David Bisson reports.

LastPass security holes could have seen hackers steal your passwords

Working separately, two vulnerability researchers have found worrying ways to steal passwords from the popular online password manager LastPass.

Fortunately, LastPass has responded quickly – fixing the bugs before they can be maliciously exploited. Here is what you need to know.

‘LostPass’ attack could phish LastPass users’ emails, passwords, and 2FA codes

A security researcher’s discovery of a means to steal credentials from LastPass users has resulted in the company stepping up its defenses.

David Bisson reports.

Flaws found in LastPass password manager by security researchers

Two security researchers have discovered a number of bugs, bad practices, and design issues in the popular LastPass password manager.

David Bisson reports.

Opinion: Maybe you shouldn’t junk LastPass just yet

LastPass’s announcement has upset a lot of users, but should you dump the password manager for another product?

Guest contributor Bob Covello shares his thoughts.

heatsoftware.com

Don’t let the LastPass hack destroy your faith in password managers

The LastPass hack may rattle some people’s faith in password managers, but the truth is that they’re a heck of a lot safer than the alternative.

Read more in my article on the Optimal Security blog.

LastPass has been hacked. Change your master password now

Hackers have attacked LastPass, the popular online password manager, and stolen data.

If you’re a user, you might be wise to reset your master password and ensure that multi-factor authentication is enabled.

welivesecurity.com

LastPass security holes found by researcher, says password management firm – but no need to panic

LastPass has gone public about a couple of security holes that were found in its popular online password management software.

That’s enough to send a shiver down the spines of the many internet users who trust the service to store its passwords securely, but the company says that there is no need to panic.

Read more in my article on the We Live Security blog.

bitdefender.com

Samsung Galaxy S5 owners can unlock LastPass with a keypress – but is that wise?

Popular password manager service LastPass has announced that it has introduced a new feature for Samsung Galaxy S5 users: Fingerprint scanning.

Yes, a simple fingerprint can now unlock your LastPass vault if you have the right Android phone.

Read more in my article on the Hot For Security blog.

Got a Boxee TV account? You should change your password

The personal details of some 158,128 people – including their names, email addresses, birth dates, IP addresses – have been leaked following what appears to be a serious security breach at Samsung-owned web TV service, Boxee.

Listen to Graham Cluley discussing password security on WGN Radio 720

Last week I was invited onto the “Bill and Wendy Show” on Chicago’s WGN Radio 720.

The topic started off as password security, but quickly tackled a number of other computer security and online safety issues.

LastPass vulnerability potentially exposed passwords for Internet Explorer users

LastPass, the popular password management tool, has been patched to fix a security flaw that could have left the passwords of Internet Explorer users potentially exposed.