LastPass has long been the password manager to recommend thanks to its generous free offer that allows you to store as many passwords as you need on as many devices as you own, but that's changing. LogMeIn, the company behind the software, announced in February that it's making the free tier a lot more limited starting today. Free users will only be able to use LastPass either on their computers or their mobile devices (phones, tablets, watches).
Everybody should use a password manager. Whether you only have five online accounts or 500, it's important to use unique, hard-to-guess credentials for every single one. If you reuse passwords, a breach from one of your accounts could help hackers get access to your whole online life. Password managers simplify and safeguard that process. There are tons of great options to choose from, and we've curated a list of eleven of our favorite solutions.
LastPass recently caused an uproar by announcing forthcoming changes to its pricing model that will effectively nerf the free tier, and now the company is in for some more bad news. According to a report published by German cybersecurity researcher Mike Kuketz (via The Register), the password manager uses seven third-party trackers that introduce potential security issues, prompting him to recommend LastPass users to switch to competitors.
LastPass is just one of many password managers out there, though it has one of the most generous pricing schemes to offer. Its Android application has always been fairly modern and is known to quickly include new OS features in its beta, like Oreo's autofill API and Marshmallow's new app permission model. Today, the firm continues this commitment by announcing it'll support Android 10's biometrics, meaning you'll be able to unlock the app with Pixel 4's face authentication.
Password managers are becoming more and more of a hot topic nowadays. We live a lot of our lives online and that requires a growing number of accounts and identities; yet with multiplying security risks and hacks popping up left and right, it's crucial to use a password manager to stay on top of your login details. Most managers fall in one of two categories: the cloud solutions like LastPass, 1Password, and Dashlane, or the local solutions with a cloud backup option like Enpass (my personal favorite) or SafeInCloud or Keepass. Myki straddles the line between the two, being neither this nor that, but having resemblances to both, plus some very unique attributes that make it intriguing...
LastPass began its winding path to support Android Oreo's autofill API in August, but the day is finally here: The popular password manager has pushed support for Oreo autofill to its stable, non-beta app. Accessibility-based autofill is still available for older apps (and Chrome) that don't yet support the new implementation.
LastPass is how many of us choose to store our passwords, and the Android app is usually fast to support new Android features. If you want even faster access, there's the LastPass beta release. That one has just been updated with more robust autofill support—both accessibility-based and the new Oreo implementation at the same time. You should also get fewer autofill prompts when you don't need them.
A few days back it was revealed by a security researcher in a post on Medium that the LastPass Authenticator app for 2FA key generation wasn't entirely secure. Access to the keys was ostensibly secured by a PIN/fingerprint, but a workaround was found that allows anyone with the ability to launch an activity on the device, including other installed applications, to access those codes. LastPass has fixed this problem in an update today.
As Microsoft's abandonment of Windows phone continued apace this year, the company moved to release more of its core apps on Android, and that included its Edge browser. It's been pretty successful, with more than one million installs, probably due to the "continuous browsing experience" it offers Windows 10 users. Now, there's even more good news for fans of the app.
Last week, Google began sending out emails to Android app developers regarding their use of Accessibility APIs. The intended purpose of that functionality is to assist disabled users, but it is often used for other functionality (to overlay content, fill in text fields, etc) by apps like LastPass. Google said that apps using this API for anything except helping disabled users would be removed from the Play Store.