According to LastPass, its customers don’t need to change anything at this point. There’s no need to spend an afternoon updating your master password and doing a comprehensive security audit. LastPass, on the other hand, will most likely have its work cut out for it in order to avoid having to make any modifications now that an unauthorised entity has access to its source code.
