Google is rolling out support for passkeys in Android and Chrome in a significant step toward passwordless authentication.
An attacker was able to compromise a developer account and steal a portion of the LastPass source code recently, the company said. But no customer data was affected.
Thanks to all the data breaches and security incidents over the last few years, attackers are sitting on a gold mine of valuable credentials information which they can use to launch credential-stuffing attacks against major Web services and other applications.
Google has integrated its Password Checkup functionality into Chrome 79 to warn when people use compromised credentials.
Four years after an intrusion, Slack has discovered new details about the incident and moved to reseat many users' passwords.