LastPass, 1Password, and Bitwarden extensions are vulnerable to clickjacking attacks

At the conference, security researcher Marek Tóth revealed that browser extensions for six password managers – 1Password, Bitwarden, Enpass, iCloud Passwords, LastPass, and LogMeOnce – are vulnerable to sophisticated clickjacking attacks. According to his findings, these flaws persist in the latest versions of the platforms tested as of August 19, 2025.

Read Entire Article