Collaborate Disseminate
What are your business’s ambitions? Are you hoping to merge with a complementary organisation, or perhaps ultimately be acquired by a bigger player? No doubt you’ve done your research into how to position yourself most attractively. YouR… Continue reading Could messy data put your merger or acquisition in doubt?
Lastpass is a great piece of software when it comes to convenience, but a recent simple hack shows just how insecure software like it can be. [Mathias Karlsson] nabbed a nice $1000 bounty for its discovery.
Lastpass’s auto-fill works by injecting some html into the website you’re visiting. It runs a bit of Javascript to parse the URL. However, the parsing script was laughably vague. By changing the URL of the page, inserting a few meaningless-to-the server slugs into the URL, an attacker could get Lastpass to give it a password and username combo for any website.
The discussion in …read more
Continue reading LastPass Happily Forfeits Passwords to Simple Javascript