Naked Security: Another hole opens up in LastPass that could take weeks to fix

Naked Security: Another hole opens up in LastPass that could take weeks to fix. “The flaw affects users of version 4.x across all browsers and platforms and would allow a phishing attacker to steal passwords from the LastPass vault when a user is drawn to a malicious website. Attackers could also execute code on computers that running LastPass’s binary component.” I don’t think anybody should ditch LastPass but this is certainly a bad run at the moment.