Hacker News new | past | comments | ask | show | jobs | submit login

LastPass prompts every time before autofilling your CC# into a form, so it might avoid this issue in that case.

I do believe it would still fail exposing your basic info, such as in this example, however.




Basic info is more critical than credit card numbers, at least in my country (Australia) where the issuer or merchant would be liable for any subsequent fraudulent transactions; at worst I would be inconvenienced a few days whilst a new card & number was issued. Compared to outright identity theft, that's minor.


LastPass has previously had autofill exploits (not with regards to CC though). I would highly recommend disabling auto-fill.




Consider applying for YC's Spring batch! Applications are open till Feb 11.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: