The company has patched a vulnerability that could allow malicious sites unauthorized access to usernames and passwords. Read more