Those with trained eyes can tell that something is already off upon looking at this page. Recently, we spotted one such app claiming to be LastPass on the Chrome Web Store: This post is to remind our readers to keep a sharp eye on apps that claim to be the real thing but are actually rogue versions of those they're imitating. As such, extra care is needed more than ever in weeding out the real ones from the knock-offs. But even legitimate sites can harbour fake apps, and we've seen this happen time and time again. We also advise our readers to download directly from the official websites of these password managers or from highly trusted third-party app markets, such as Google Play, the App Store, and the Chrome Web Store. Our apologies for any inconveniences caused, and thank you for your understanding and patience.įound this article interesting? Follow Graham Cluley on Twitter or Mastodon to read more of the exclusive content we post.When it comes to passwords, one piece of advice we give our readers is to use password managers / vaults to help them maintain, keep track of, and store away account logins that are impossible to recall by memory on a daily basis - for example, Dashline, Keychain, 1Password, and LastPass. RESOLVED: The LastPass Chrome extension has been restored:
Within a few hours LastPass was able to confirm that it had resubmitted its Chrome extension for Google to review, and it had been republished. Nonetheless, it’s not the kind of thing any firm wants to happen. If you had a different browser installed on your computer – such as Safari, Opera, Microsoft Edge, and Firefox – you could always install the extension for that.Īnd, of course, it’s worth underlining that no-one’s password was at any risk due to this incident. Existing users would not have been affected, as the extension had not been removed from their own computer – just the store.įurthermore, the LastPass extension dropping temporarily out of the Google Chrome web store wouldn’t have prevented users from accessing their passwords, which continued to be available as before from their password vault by signing in to the LastPass website or using the LastPass smartphone app. It’s also important to note that the removal of the extension would only have affected people who were attempting to install the extension. Although an embarrassing goof, it’s something of a storm in a teacup security-wise.
0 kommentar(er)
