undefined | Better HN

0 pointsPfhortune2y ago0 comments

> Do note that this article fails to actually identify any threat here.

From the article:

> ...the app was likely created to act as a phishing app and steal credentials.

> If you have installed the fake LastPass app, you should immediately remove it and change your password at lastpass.com. It is then advised to perform the arduous task of resetting all passwords stored in your LastPass vault to be safe.

Though one could argue that they have not _definitively_ proven that this app is a threat through testing, it really is not much of a stretch of the imagination that a LastPass-lookalike would be used for phishing. This app is very clearly an illegitimate clone.

0 comments

3 comments · 1 top-level

chrisjj2y ago· 2 in thread

> ...the app was likely created to act as a phishing app and steal credentials.

That a fear, not a threat.

> Though one could argue that they have not _definitively_ proven that this app is a threat

Why bother arguing that? They haven't claimed any evidence, let alone proof.

> it really is not much of a stretch of the imagination that a LastPass-lookalike would be used for phishing.

App Store rightly does not ban apps on stretches of imagination.

lapcat2y ago

> App Store rightly does not ban apps on stretches of imagination.

Apple has removed the app: https://techcrunch.com/2024/02/08/a-fake-app-masquerading-as...

chrisjj2y ago

> Apple has removed the app

Fake news. Article does not say Apple removed it. On the contrary:

"whether by Apple or the fake app’s developer is yet unclear — Apple has not commented."

1 more reply

j / k navigate · click thread line to collapse