>storing password in muh cloud
>people actually use password managers
>on the internet
>in current year
>with all of the vunrabilities in the world they actually trust others with enough information to warrant identity theft
Shit dude ! Let the frogposter alone his right yo know? Why should everyone use password managers when you can store passwords more efficiently in any good and secure way like... A FUCKING PAPER !!!
>Get the victim to go to a malicious website that looks benign, or a real website that is vulnerable to XSS
>If they have LastPass installed, show the login expired notification and log the user out of LastPass (Logout CSRF)
>Once the victim clicks on the fake banner, direct them to an attacker-controlled login page that looks identical to the LastPass one
>The victim will enter their password and send the credentials to the attacker's server
Wow, a phishing program. I better drop last pass because I'm totally gonna fall for one of those.
OP did you even read how it works?
>A tool to phish LastPass accounts. See my blog post for more information.
No one on /g/ would be dumb enough to fall for a phish. This shit only works on old ladies.