CNET
LastPassa website detection is in the spotlight after a security researcher recommended disabling the password manager based on the findings of a well-known privacy app. The analysis follows the recently announced LastPass restrictions on its free service, which will take effect in March.
The Exodus Privacy app, developed by the Guardian Project to document the number of trackers and permissions used by other apps, has discovered seven web trackers in the Android version of LastPass. German security researcher Mike Kuketz highlighted the findings in an analysis published Thursday, and recommended that users move away from the password manager in favor of one without trackers.
Read more: The best password manager to use in 2021: 1Password, LastPass and more in comparison
The web trackers on LastPass include those from Google Analytics, AppsFlyer and Mixpanel. While LastPass’ password encryption normally protects your passwords from being viewed by any tracker or website, these trackers allow third-party companies to collect a surprisingly complete record of the sites you visit.
“These trackers are industry-standard mobile analytics tools and are used for a limited purpose – to collect aggregate statistics on how LastPass is used to help us improve and optimize the product to deliver the best user experience,” LastPass said in a public statement. .
The company also said it is constantly reviewing its processes to prioritize customers’ privacy and security. However, in his analysis, Kuketz said he could not take the opportunity to share data with LastPass’ trackers.
By comparison, Exodus Privacy found that LastPass competitors 1Password and KeePass have no trackers.
Look at this:
In a world of bad passwords, a security key can be …
4:11