LastPass users automatically updated to fix security vulnerability in browser extension

Doubleplus ungood. If we are going to encourage people to use strong, single-use passwords then we need tools like LastPass (and Apple’s keychain) to be bulletproof. Glad to see that they pushed out an update, but I’d be interested to see if this contravened any organisations’ update policies…:

[…] Popular password manager LastPass says that it has fixed a vulnerability in its Chrome and Opera browser extensions that could have potentially seen an attacker steal the username and password previously filled-in by the software. […]

Original article here