Surprise: LastPass Android app tracks the hell out of its users
Now, to be clear - trackers don’t always equal a security risk, as in many cases the service provider is using them to collect data about the device you’re using for the sake of improving the service itself. Many companies rely on third-party trackers from tech giants like Google in order to delegate the responsibility and benefit from well-established and secure solutions.
In the case of LastPass, only four out of the seven trackers were Google’s, the other three are lesser-known. While all of these trackers bear the “analytics” label (one is labeled “crash reporting”), two of them also include the “advertisement” and “profiling” labels. It’s almost self-explanatory what these are doing and it’s pure irony that a service like LastPass uses these kinds of practices.
The timing of the report is also not great for LastPass, as last month the company introduced changes to the service, restricting free users to one type of device - mobile or computer.