Security News Users Warned of Critical PGP Email Encryption Security Flaw

LASER_oneXM

LASER_oneXM

Level 37
Thread author
Verified
Top Poster
Well-known
Feb 4, 2016
2,520
Content source
https://www.bleepingcomputer.com/news/security/users-warned-of-critical-pgp-email-encryption-security-flaw/
A team of nine academics is warning the world about critical vulnerabilities in the PGP and S/MIME email encryption tools.

The flaws, if exploited, allow an attacker to decrypt sent or received messages, according to the researcher team.

"They might reveal the plaintext of encrypted emails, including encrypted emails sent in the past," researchers said. "There are currently no reliable fixes for the vulnerability."

Researchers promised to publish more details tomorrow, Tuesday, May 15. In the meantime, they are recommending that users stop using PGP and S/MIME for now.
Click to expand...
The Electronic Frontier Foundation —which researchers contacted to help them broadcast their message to a broader audience— has published tutorials on how to disable PGP and related plugins.


Thunderbird with Enigmail
Apple Mail with GPGTools
Outlook with Gpg4win


Users are advised to disable email encryption to avoid any attackers from recovering past encrypted emails after the paper's publication.

"These steps are intended as a temporary, conservative stopgap until the immediate risk of the exploit has passed and been mitigated against by the wider community," the EFF said.

Users in dire need of using encryption to protect their communications channels were advised to use an instant messaging client that supports end-to-end encryption, the EFF recommended.
Click to expand...
 
  • Like
Reactions: Handsome Recluse, Daviworld, ZeroDay and 3 others
You must log in or register to reply here.

Similar threads

enaph
    • Like
    • Thanks
    • Applause
Privacy News Tuta Mail adds new quantum-resistant encryption to protect email
Replies
0
Views
1,122
Security News
enaph
enaph
Gandalf_The_Grey
    • Like
    • +Reputation
Security News Bitdefender and Trend Micro security software patched after critical vulnerabilities exposed
Replies
0
Views
1,180
Security News
Gandalf_The_Grey
Gandalf_The_Grey
Gandalf_The_Grey
    • Wow
Security News Kia dealer portal flaw could let attackers hack millions of cars (fixed)
Replies
0
Views
1,802
Security News
Gandalf_The_Grey
Gandalf_The_Grey

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top