Thanks.. I don't think it supports ethernet so I think that means wifi only.. But yes I want it as secure as possible..
Then no email, and don't sign into it - use "guest mode" on it once you set it up (no auto sync of extensions or such).
It probably won't run malware anyway, but if you're concerned about malware spread through email, not accessing email on the system is the way to go.
Interesting I always shyed away from these things in case the last pass was hacked.... But I guess with multilayer authentication it should be OK.
LastPass encrypts your password database with your master password - so make sure you have a decent master password.
But the common threat these days is sites losing their password database when it's not well secured (say, LinkedIn, with plain unsalted SHA1).
Having LastPass makes it trivial to use a unique, random, long password for each site - so, for instance, I generate 12 or 16 character upper/lower/numeric passwords (no symbols since too many sites don't let you use those), unique for each site. If one such site is hacked, it's going to be difficult to find my password from the hashed version, but even if it's plaintext, it doesn't help anyone gain access into my other accounts.
Here are some of the passwords I generate (freshly generated, these won't get you access to anything...):
5GWAEnSYgrnQm8Rf
gWxFDWG3uaKCN9u6
9dP9p77Xc5rYXeJC
For your email accounts, set up two factor (and if your mail provider doesn't support two factor, use another one). Same for LastPass. Then don't worry about it much.