Password Manager LastPass to Debut New Family Plan Later This Summer

Popular password management LastPass today announced plans to introduce a new family plan, LastPass Families. The new plan is designed to allow up to six family members to store and access all of their passwords and documents from any device.

With LastPass Families, family members can share access to bank accounts, credit cards, and more, for every day use or in case of an emergency. According to LastPass, each individual family member will have access to unlimited shared folders with family members, emergency access, and a family dashboard where the family manager can add and remove members. Family members will also have a private, personal vault for storing passwords that are not shared.


LastPass plans to launch LastPass Families later this summer, but customers can sign up now to get early access to the feature. All LastPass Premium customers will also get a chance to try LastPass Families for free for six months.

LastPass Premium is priced at $12 per year, but family pricing has yet to be announced.

Tag: LastPass

Discuss this article in our forums

LastPass Working on Security Patch For Browser Extension Vulnerability

LastPass has advised all users of the password manager to launch sites directly from the LastPass vault and enable two-factor authentication wherever possible, until it addresses a vulnerability discovered in LastPass browser extensions.

The client-side vulnerability, discovered by Google security researcher Tavis Ormandy, allows for an attack that is "unique and highly sophisticated", said LastPass in a blog post, without disclosing further details.

Over the weekend, Google security researcher Tavis Ormandy reported a new client-side vulnerability in the LastPass browser extension. We are now actively addressing the vulnerability. This attack is unique and highly sophisticated. We don’t want to disclose anything specific about the vulnerability or our fix that could reveal anything to less sophisticated but nefarious parties. So you can expect a more detailed post mortem once this work is complete.
To secure sign-in credentials in the meantime, LastPass has recommended that users launch sites directly from the vault and make use of two-factor authentication on sites that offer it, while remaining vigilant to avoid phishing attempts.

The news follows the discovery and successful patching of earlier remote code execution (RCE) vulnerabilities that could be used to steal passwords from extensions for Firefox, Chrome, Opera, and Edge. Safari was not mentioned in the original vulnerability alert, while mobile apps were not affected, but concerned users can follow the advice regardless until LastPass offers further news on the situation.


Discuss this article in our forums