LastPass Vulnerability Remains an Issue
LastPass, the well-known password management company, has uncovered a major client-side security exposure that could put its users’ data at risk. At the end of March, Google’s security researcher, Tavis Ormandy, hit the news again when he tweeted that he had worked out how to execute code in the LastPass browser extension, thereby exposing a major vulnerability. While LastPass have since issued a public statement to the effect that they are now aware of the exposure, they have yet to reveal the specific details of the exploit and have yet to clearly identify a solid fix.
So what can you do in the meantime?
LastPass advises all users to take three actions:
- Bypass the browser extension and launch sites directly from the LastPass vault or through the smartphone app.
- Keep an eye out for any suspicious email attachments or links.
- Utilize two-step verification where possible.
Uber Self-driving Crash Hits the News
Uber has once again hit the headlines for all the wrong reasons due to a crash involving one of its self-driving vehicles. The collision, which involved a self-driving Volvo SUV, occurred in Arizona and resulted in the car flipping over onto its side and causing damage to at least two additional human-operated cars.
Images of the scene of the accident rapidly spread through the Twittersphere and Uber’s self-driving fleet has since been grounded. Uber have confirmed that no one was injured in the collision and reports have circulated that suggest the SUV was hit by a human-driven car that failed to yield, flipping Uber’s vehicle onto its side before the driver could take action.
It seems Uber’s self-drive technology has quite some way to go before everyone is rushing to get on board.