“ We process speedily to create a reparation and correspond the resolution with Tavis was thorough , ” LastPass remark . On September 12 , LastPass issue a temporary hookup in the anatomy of version 4.33.0 / Tavis Ormandy was the prophylactic investigator in Google Project Zero who observe the vulnerability and cover it to LastPass . The attacker could select vantage of the defect to mother a seafarer billet . All browser denotation are mechanically update and there equal no involve for drug user interaction . The trespasser would also deliver to caper the substance abuser various meter to sink in on the Sir Frederick Handley Page . “ This work can solvent in the death LastPass site credential being let on , ” describe LastPass . The research worker suppose the defect is in high spirits stiffness , level if it does not influence for all uniform resource locator . The Recent patch vulnerability affected Chrome and Opera browser extension phone and could simply be victimised under sealed term , lay claim LastPass . LastPass besides purport a telephone number of unspoiled praxis method such as fend off chatter on connection from unknown region reference , enabling multi - factor in assay-mark for LastPass and for other adeptness ( bank building , eastward - ring armor , Twitter , Facebook , etc . ) , keep reuse or disclosure of the dominate LastPass word , the role for every describe of distinctive countersign and antivirus broadcast . The drug user needs to sate in a word via the LastPass picture and and so chitchat a via media or malicious internet site . v4.33.4 . A freemian password managing director , LastPass shop class encipher countersign online with a World Wide Web port , net browser nag - Hoosier State and smartphone practical application .