Jump to content

Newly discovered vulnerabilities bad news for PGP


Recommended Posts

More info:

https://motherboard.vice.com/en_us/article/3k4nd9/pgp-gpg-efail-vulnerability
https://www.eff.org/deeplinks/2018/05/attention-pgp-users-new-vulnerabilities-require-you-take-action-now
https://www.eff.org/deeplinks/2018/05/not-so-pretty-what-you-need-know-about-e-fail-and-pgp-flaw-0
https://efail.de/

In a nutshell, common implementations of PGP in many email clients have been compromised by this vulnerability and if anyone is able to get copies of your email messages (the encrypted copies stored in your email client or online in the servers that keep their backups etc.) then they may be able to trick your email client into decrypting them and sending the decrypted content directly to them as though they were you reading your own messages.  This means the could potentially gain access to your messages without necessarily needing to crack your password or other security measures required to access and read your email.

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    No registered users viewing this page.

Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.