Password managers don't have to be perfect, they just have to be better than not having one https://www.troyhunt.com/password-managers-dont-have-to-be-perfect-they-just-have-to-be-better-than-not-having-one/ … via @NewsBlur
Well, RCE is a lot worse than website passwords getting compromised. The LP vuln popped a calc.
-
-
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Also
@taviso's showerbug was nearly a new class of vulnerabilities. -
Also the ability to pop calc was a browser priv model bug. Extensions should not be able to exec host code, ever.
-
I don't think anyone has been talking about this aspect...
-
That was using the "binary component" of LastPass, I'm sure Tavis did indeed talk about that before.
-
Oh, that makes it somewhat less interesting and more LP's fault for encouraging users to install a binary...
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.