For most of us, Saturday morning is a time for a lie in, a leisurely brunch, or maybe taking the kids to the park. But for some it’s bug-hunting time. Tavis Ormandy, a member of Google’s crack Project Zero security team, was in the shower and thinking about LastPass – after finding a number of flaws in the password manager over the past week. Then he had an epiphany and “realized how to get codeexec in LastPass 4.1.43,” he said, and filed a bug report.
ORIGINAL SOURCE: The Register
The post LastPass Scrambles to Fix Another Major Flaw – Once Again Spotted by Google’s Bugfinders appeared first on IT SECURITY GURU.
from LastPass Scrambles to Fix Another Major Flaw – Once Again Spotted by Google’s Bugfinders