![[H]ard|Forum](/styles/hardforum/xenforo/logo_dark.png){kind=logo}
Megalith
24-bit/48kHz
- Joined
- Aug 20, 2006
- Messages
- 13,000
Those of you who use the password manager should check this out and take the necessary precautions.
I call this attack LostPass. The code is available via Github. LostPass works because LastPass displays messages in the browser that attackers can fake. Users can't tell the difference between a fake LostPass message and the real thing because there is no difference. It's pixel-for-pixel the same notification and login screen.
I call this attack LostPass. The code is available via Github. LostPass works because LastPass displays messages in the browser that attackers can fake. Users can't tell the difference between a fake LostPass message and the real thing because there is no difference. It's pixel-for-pixel the same notification and login screen.