A potentially catastrophic security flaw in LastPass's Firefox extension , which is used by millions of people. It was discovered by Tavis Ormandy who, as part of Google's security team Project Zero, has previously found flaws in programs made by Symantec and Avast. He found a "bunch of critical problems" in the extension that hackers could exploit to lure users to an infected website, then secretly access their account.
展开▼
