Users should be able to unpack the extension and audit it themselves. The underlying code is constructed in a straightforward manner and served unobfuscated, improving transparency.
This prevents leaking of data even if you're logged out of your vault. The extension doesn't cache any data locally.It only has permission to run in the context of your LastPass tab. The extension never communicates with non-LastPass servers.Passwords are never referenced or extracted - only the service URL, name, and usernames get accessed.Multipass was developed with that concern in mind, and takes the following measures: You should always be cautious when granting access to sensitive data to third party extensions (such as this one). Hovering over a red asterisk on the line of supported MFA methods will present you with caveats for the site.Clicking the information button at the far right of an entry (if present) will take you to a help page for the service.Clicking on an entry will open a new window for the service (the URL field for the saved account).Click the "Multipass" link in the left sidebar.Log in to the LastPass website (not through the extension).This is neither affiliated with, nor endorsed by, LastPass. Determine which of the accounts stored in your vault support some form of multifactor authentication. A multifactor authentication checker for LastPass.
0 kommentar(er)
