Design Flaw May Have Allowed Attackers To Bypass LastPass Two-Factor Authentication

 

Triskel Security founder Martin Vigo found a vulnerability in the LastPass application that could have allowed an attacker to bypass the service’s two-factor authentication. The vulnerability seems to exist because of a bad design decision LastPass made earlier.

Just in case you don't know...

Read more here:

http://www.tomshardware.com/news/lastpass-2fa-bad-design-dec...

--
Never argue with a pig. It makes you look foolish and it anoys the hell out of the pig!

Thanks for this. I'm

Thanks for this. I'm hesitant to use a password manager, but almost all my friends use one. Too much dependence on one product for security. Two factor everything and individual passwords for all sites for me.