Tavis Ormandy

LastPass Acknowledges Vulnerability Found by Google Security Researcher

On Monday, LastPass acknowledged a remote code execution vulnerability that affects version 4.1.43 of the LastPass extension on Chrome. The vulnerability was discovered by Google Project Zero researcher Tavis Ormandy. In a blog post, LastPass called the vulnerability 'unique and highly sophisticated'. "We are now actively addressing the vulnerability. This attack is unique and highly...