Passwords have always been a challenge. It is hard to remember them, and you are not supposed to use the same password across different platforms. Several companies, including LastPass, have tried to help consumers with managing passwords in a secure way so consumers can keep them straight. Unfortunately, last week, two security researchers reported that they had discovered several security vulnerabilities.
The first vulnerability allowed the executing of code remotely and was reportedly fixed last week. The second vulnerability was discovered and patched over a year ago, but could have been exploited to steal stored credentials. The vulnerability was described as a “complete remote compromise.”
Users of LastPass may wish to consider changing their passwords that were stored in a LastPass account.