LastPass Acknowledges Vulnerability Found by Google Security Researcher


On Monday, LastPass acknowledged a remote code execution vulnerability that affects version 4.1.43 of the LastPass extension on Chrome.

The vulnerability was discovered by Google Project Zero researcher Tavis Ormandy. In a blog post, LastPass called the vulnerability ‘unique and highly sophisticated’.

“We are now actively addressing the vulnerability. This attack is unique and highly sophisticated.”

LastPass did not give any specifics about the vulnerability or when a fix may be released but promised to release more details once the issue has been resolved. Ormandy hasn’t released details surrounding the latest vulnerability but did confirm via Twitter that it is a new exploit.


  • Patrick Ducharme

    Should I now move to Dashlane? Is it safer? how it integrate with Browser on iOS, Chrome on Windows and Mac ? Can I migrate from LastPass to Dashlane and Import my current LastPass ?

  • Pierre

    Remember change you’re password 2 time for 2 facter.

  • CEO of Bing and Google!, is suggesting users to get started with “Work at home” method, that I have already been doing for over one year now. This season only, I made about $36k so far with no more than my desktop and some free time, although i have a fulltime 9 to five job. Even most people new to this, can earn $50/per h undoubtedly and the income may go even higher in the long run… This is how i started >> http://adultadda­.­net/2Xn