Security News > 2016 > July > LastPass zero-day can lead to account compromise (Help Net Security)

A zero-day flaw in the popular password manager LastPass can be triggered by users visiting a malicious site, allowing attackers to compromise the users’s account and all the sensitive information in it. The discovery was made by Google Project Zero researcher Tavis Ormandy who, after probing a slew of AV solutions and finding serious security holes in them, has apparently set his sights on widely used password management solutions. Aside from that flaw, he also … More →

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/sOaX0LNKu8Q/