LastPass fixes up an issue recently spotted by a developer that lets him bypass a security feature on the Authenticator app on Android. The app adds an extra protection that requires a fingerprint or PIN to access passwords when you leave your phone unlocked. So, if you use LastPass on Android, now is the time to upgrade your app. The password manager just released an update that fixes this issue and adds a one-time code when you first enable this added security feature.
On top of this, LastPass also got clued into how it needs to revamp its response process, too. The developer wasn’t able to reach the company to let them know about the exploit so he posted it on Medium. But the company assures that they’ve resolved this procedural issue to make sure they get these reports get to them in the future.
Source: Engadget