Engadget: LastPass fixes fingerprint security flaw in its Authenticator app. “Password manager LastPass has an extra layer of protection for its Authenticator app, in the form of a fingerprint and/or PIN that ostensibly keeps people out of your passwords if they find your phone unlocked. Last week, a developer posted that he’d been able to bypass this security feature on the Android version of the app. As of right now, though, LastPass users can download an update to the app that fixes the issue and adds a one-time code when the fingerprint/PIN feature is first enabled.”
Digital Trends: Password Manager Face Off – LastPass Vs 1Password, Who You Got?. “Using a password manager can be one of the most important steps you take in securing yourself online (and being ‘internet awesome’), but picking the right one for you isn’t always easy. To that end, we’ve pitted two of the most popular managers against one another in a battle to see which is better: LastPass vs. 1Password.”
Neowin: LastPass doubles price of its Premium plan, removes features from its free service tier. “In November, LastPass made a big change to its service, allowing users to keep track of their passwords across all their internet-enabled mobile and desktop devices, free of charge. In addition to the free tier, the cross-platform password manager – available on iOS, Android, and Windows 10 – also offered a Premium plan with additional features, priced at $12 per year. Today, LastPass announced another wave of changes to its lineup for individual users – but this time, the changes are unlikely to be welcomed with open arms by its customers.”
BetaNews: LastPass lets you share passwords with its new Families subscription. “Sharing some accounts with friends or family members has its perks, but it can also be risky. Many people expect to use simple passwords, which is why you may be tempted to go for something that’s easy to remember. Not to mention that they also lose the credentials from time to time, so you have to share them again via email or texts, which is not really safe. But LastPass may have come up with a better option.”
Naked Security: Another hole opens up in LastPass that could take weeks to fix. “The flaw affects users of version 4.x across all browsers and platforms and would allow a phishing attacker to steal passwords from the LastPass vault when a user is drawn to a malicious website. Attackers could also execute code on computers that running LastPass’s binary component.” I don’t think anybody should ditch LastPass but this is certainly a bad run at the moment.
Naked Security: LastPass steps up quickly to fix vulnerabilities spotted by researchers. “LastPass suffers occasional software vulnerabilities, including the odd very serious one – nothing unusual in that perhaps – but then immediately sets to work fixing them. We mention this not to laud LastPass to the skies with a tear in our eye but because it’s what all software companies with millions of users should do in this situation. Serious flaws shouldn’t be there in the first place, but before a single line of code has been re-written it’s a question of attitude.”
MakeUseOf: 5 Best LastPass Alternatives to Manage Your Passwords “Most people consider LastPass to be the king of password managers — it’s packed with features and boasts more users than any of its competitors. But it’s far from being the only option. In this article, I’m going to introduce you to some alternatives. For each suggestion, I’ll give you one core benefit that distinguishes it from its ubiquitous rival.”