Elon Musk’s SpaceX Acquires xAI in Historic Deal Uniting Space and Artificial Intelligence 
Alphabet’s Massive AI Spending Surge Signals Confidence in Google’s Growth Engine 
SpaceX Reports $8 Billion Profit as IPO Plans and Starlink Growth Fuel Valuation Buzz 
Nvidia, ByteDance, and the U.S.-China AI Chip Standoff Over H200 Exports 
Amazon Stock Rebounds After Earnings as $200B Capex Plan Sparks AI Spending Debate 
TSMC Eyes 3nm Chip Production in Japan with $17 Billion Kumamoto Investment 
Baidu Approves $5 Billion Share Buyback and Plans First-Ever Dividend in 2026 
OpenAI Expands Enterprise AI Strategy With Major Hiring Push Ahead of New Business Offering 
Oracle Plans $45–$50 Billion Funding Push in 2026 to Expand Cloud and AI Infrastructure 
Jensen Huang Urges Taiwan Suppliers to Boost AI Chip Production Amid Surging Demand 
Anthropic Eyes $350 Billion Valuation as AI Funding and Share Sale Accelerate 
Instagram Outage Disrupts Thousands of U.S. Users 
SoftBank Shares Slide After Arm Earnings Miss Fuels Tech Stock Sell-Off 
Tencent Shares Slide After WeChat Restricts YuanBao AI Promotional Links 
Elon Musk’s Empire: SpaceX, Tesla, and xAI Merger Talks Spark Investor Debate 
Nintendo Shares Slide After Earnings Miss Raises Switch 2 Margin Concerns 
LastPass is one of the most crucial internet services in the market right now because it serves a critical purpose: saving passwords that no one can be bothered to remember. Due to the nature of its services, LastPass takes its security very seriously. The tech entity managed to head off what would have been a security disaster by addressing two serious vulnerabilities. This would have put LogMeIn’s $110 million investment in the service in 2015 in a much darker light.
Before LastPass users panic, the company is assuring everyone that no hackers managed to find these vulnerabilities in time to actually take advantage of them, PC Mag reports. If they had, it would have compromised users of Chrome and Edge, as well as users of older versions of Mozilla Firefox.
The vulnerabilities themselves are tied to the browser extensions that are used for the ones mentioned above. They were discovered by Tavis Ormandy, a Google researcher earlier this March and notified LastPass, which gave the company enough time to actually patch it up.
LastPass provided more details regarding the vulnerabilities that it fixed in a blog post. The piece is relatively long, but the gist of it is that the holes have been filled, mobile versions of the services were not affected, and none of the credentials were stolen.
“To exploit the reported vulnerabilities, an attacker would first lure a user to a malicious website,” LastPass explained in the post if hackers had actually got wind of the vulnerability. “Once on a malicious website, Tavis demonstrated how an attacker could make calls into LastPass APIs, or in some cases run arbitrary code, while appearing as a trusted party. Doing so would allow the attacker to potentially retrieve and expose information from the LastPass account, such as user’s login credentials.”
LastPass was acquired by LogMeIn in 2015 in a bid to move into the cyber security space. If the password storage service had failed to fix the two vulnerabilities, the ensuing debacle would have made the hefty price tag paid at the time even heavier.
