LastPass, arguably the most widely used password manager around is passing on some welcome news to its users. Starting Wednesday, LastPass users will be able to sync their passwords across multiple devices and platforms, for free.
The cross-platform sync for users’ credentials, previously a perk enjoyed by paying members, will now be enabled for all users and members on the free tier can start using the feature immediately across on multiple devices beyond their desktops or laptops.
Launched in 2008, LastPass has come a long way in becoming a ubiquitous name in password management. Joe Siegrist, founder and general manager of LastPass who made the announcement , sees [...]
Popular password manager and vault LastPass has launched a free two-factor authentication (2FA) app that compliments its password manager and vault, bringing added security to users. The application is also designed to be used with “hundreds” of popular applications and websites, including Amazon, Dropbox, Evernote, Facebook and more.
With its launch today, the LastPass Authenticator App is now available for mobile devices across the three prominent platforms – iTunes App Store, Google Play and the Microsoft App Store.
The app will bring the “second” factor of multi-factor authentication via a six-digit real-time code that can be used to gain access to the LastPass [...]
LastPass has long been known as a trustworthy password manager, thanks to their browser extensions, ease of use and security protocols. Recently, researcher Sean Cassidy carried out a presentation at the hacker convention, Shmoocon. There, he demonstrated a phishing attack that reportedly exposed a vulnerability in the LastPass security system.
The attack was meant to trick users who accessed a malicious website into believing that they have been logged out of their LastPass accounts. Once this happened, they would be prompted to relog by entering their master password on a false website, which would then steal the user’s information.
Once these claims were made, [...]
Users of LastPass are vulnerable to a phishing attack that requires preventive measures. Sean Cassidy, CTO at Praesidio, a cloud cyber security startup, detected that attackers can steal a user’s password, email and two-factor authentication code, which make all the user’s documents and passwords vulnerable. He described the vulnerability and suggested protection measures on his website. He also discussed LastPass at ShmooCon 2016, a hacker convention.
The attack, which Cassidy references as LostPass, displays messages in the browser that an attacker can fake. The user cannot distinguish between the fake LostPass message and the real message since the fake one looks the same [...]