A few days back it was revealed by a security researcher in a post on Medium that the LastPass Authenticator app for 2FA key generation wasn't entirely secure. Access to the keys was ostensibly secured by a PIN/fingerprint, but a workaround was found that allows anyone with the ability to launch an activity on the device, including other installed applications, to access those codes. LastPass has fixed this problem in an update today.
Read MoreLastPass' 2FA Authenticator app found to be partially insecure, fix incoming was written by the awesome team at Android Police.
Android Match
Post a Comment