Security News > 2016 > July > LastPass zero-day can lead to account compromise (Help Net Security)
2016-07-27 16:51
A zero-day flaw in the popular password manager LastPass can be triggered by users visiting a malicious site, allowing attackers to compromise the users’s account and all the sensitive information in it. The discovery was made by Google Project Zero researcher Tavis Ormandy who, after probing a slew of AV solutions and finding serious security holes in them, has apparently set his sights on widely used password management solutions. Aside from that flaw, he also … More →
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/sOaX0LNKu8Q/
Related news
- Microsoft fixes 4 exploited zero-days and a code defect that nixed earlier security fixes (source)
- Week in review: Microsoft fixes two exploited zero-days, SOC teams are losing trust in security tools (source)
- The Rise of Zero-Day Vulnerabilities: Why Traditional Security Solutions Fall Short (source)