Users of the password manager LastPass have been warned to update to the most recent version of the software package, which contains a patch for a newly identified bug that could allow attackers to retrieve stored LastPass passwords.
The bug only affects only users of Internet Explorer with LastPass v2.0.20, and allows the passwords that LastPass automatically fills into the fields in IE also stored in plaintext into the computer memory, which in the end allows them to be extracted via a memory dump.
Another prevention of such circumstance is quitting IE deletes all the passwords from the memory.
None the less, LastPass advises all users to update to the latest version, as it also patches other issues and contains many new features.