Sign in / up

Reply to post: Re: And there I was...

Zero-day hole can pwn millions of LastPass users, all that's needed is a malicious site

Adam 1
Reply Icon

Re: And there I was...

I seriously doubt that is a better idea. Unless lastpass are idiots, they aren't going to be able to decrypt your database because they won't know your master password. I'll be interested to see what the flaw is, but my guess is that it relates to a mechanism to trick it into auto populating the form on an imposter form delivered over an ad network, XCS or MitM attack.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

Forgotten password ?

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon