Advertisement
Top

LastPass phishing attack could have scooped up passwords

January 18, 2016

Via: CIO
Category:

A relatively simple phishing attack could be used to compromise the widely used password manager LastPass, according to new research.

Notifications displayed by LastPass version 4.0 in a browser window can be spoofed, tricking people into divulging their login credentials and even snatching a one-time passcode, according to Sean Cassidy, who gave a presentation at the Shmoocon conference on Saturday.

Read More on CIO

RELATED PUBLICATIONS

Most Tinyproxy Instances are potentially vulnerable to flaw CVE-2023-49606
Massive security hole in VPNs shows their shortcomings as a defensive measure
Passwords under seven characters can be easily cracked

Latest Publications

NCSC CTO: Broken market must be fixed to usher in new tech
EU probes Meta over its provisions for protecting children
Improving cyber defense with open source SIEM and XDR
Security Curated Copyright © 2024. All rights reserved
Go to ITCurated!