In the latest weekly update from the National Cyber Security Centre (NCSC) on the 20th September, users are urged to update their LastPass password manager with the latest patch.
Used widely by small businesses and individuals, LastPass is one of the leading password managers worldwide. The released update resolves a credentials vulnerability that exposed credentials previously entered on a previously visited website. The fix in version 4.33.0 was released last week and users are urged to update to this version as soon as possible, particularly for those using Chrome and Opera browser extensions.
Password managers are widely recommended to help users to securely store their passwords, so you don’t have to remember them all, or to be able to use more secure, encrypted passwords easily. Weak and shared passwords are a common security vulnerability for users in small businesses and in their home lives.
The NCSC has also published an article which outlines the benefits of using a Password Manager and how to protect it. Users should also consider enabling automatic updates for password manager like LastPass. This is good practice for all apps and software you have installed on your devices.