GnuPG Flaw in Encryption Tools Lets Attackers Spoof Anyone’s Signature

15 June 2018

A security researcher has discovered a critical vulnerability in some of the world’s most popular and widely used email encryption clients that use OpenPGP standard and rely on GnuPG for encrypting and digitally signing messages. The disclosure comes almost a month after researchers revealed a series of flaws, dubbed eFail, in PGP and S/Mime encryption tools that could allow attackers to reveal encrypted emails in plaintext, affecting a variety of email programs, including Thunderbird, Apple Mail, and Outlook.

Read full news article on The Hacker News

Date:

15 June 2018

Categorie(s):

NEWS

Tag(s):

Email Encryption, Flaws, GNU, GnuPG, Open Source, Open Source Software, Openpgp, Signatures, Tools

NSA, FBI Alert on N. Korean Hackers Spoofing Emails from Trusted Sources3 May 2024
Lenovo launches AI-based Cyber Resiliency as a Service3 May 2024
These Dangerous Scammers Don’t Even Bother to Hide Their Crimes3 May 2024
Edgio ASM reduces risk from web application vulnerabilities3 May 2024
Understanding Email Threats with Cloudflare Radar3 May 2024