I'm sorry, but I expect better from a company like Lastpass. They should have already been thinking about these kind of attacks.
Well, as early as in Jan 2012 Lastpass CEO Joe Siegrist rubbed the Chrome developers' noses in the fact that there is a respective security issue in Chrome - and it's not yet fixed!