Jump to content


Photo

Critical Flaws in PGP and S/MIME Tools - Immediately disable tools ...


  • Please log in to reply
3 replies to this topic

#1 TheSentinel

TheSentinel

    The man in the dark

  • General Admin
  • 31,817 posts

Posted 14 May 2018 - 01:23 PM

Critical Flaws in PGP and S/MIME Tools - Immediately disable tools that automatically decrypt PGP-encrypted email

Researchers found critical vulnerabilities in PGP and S/MIME Tools, immediately disable and/or uninstall tools that automatically decrypt PGP-encrypted email. If you are one of the users of the email encryption tools Pretty Good Privacy and S/MIME there...

May 14, 2018  By Pierluigi Paganini   Posted In  Breaking News  Hacking

Read the complete article about here:
https://securityaffa...ools-flaws.html

 



#2 TheSentinel

TheSentinel

    The man in the dark

  • General Admin
  • 31,817 posts

Posted 14 May 2018 - 01:36 PM

See another article about please:

 

Critical PGP and S/MIME bugs can reveal encrypted emails—uninstall now [Updated]
The flaws can expose emails sent in the past and "pose an immediate threat."

Dan Goodin - May 14, 2018 6:02 am UTC

The Internet’s two most widely used methods for encrypting email—PGP and S/MIME—are vulnerable to hacks that can reveal the plaintext of encrypted messages, a researcher warned late Sunday night. He went on to say there are no reliable fixes and to advise anyone who uses either encryption standard for sensitive communications to remove them immediately from email clients. The flaws “might reveal the plaintext of encrypted emails, including encrypted emails you sent in the past,” Sebastian Schinzel, a professor of computer security at Münster University of Applied Sciences, wrote on Twitter. “There are currently no reliable fixes for the vulnerability. If you use PGP/GPG or S/MIME for very sensitive communication, you should disable it in your email client for now.”

See the full article at:
https://arstechnica....-uninstall-now/

 



#3 TheSentinel

TheSentinel

    The man in the dark

  • General Admin
  • 31,817 posts

Posted 14 May 2018 - 01:48 PM

A collection about that flaw and how-to-does for disabling PGP

 

Attention PGP Users: New Vulnerabilities Require You To Take Action Now
By Danny O'Brien and Gennie Gebhart
May 13, 2018

More:
https://www.eff.org/...take-action-now

Another one:

Disabling PGP in Thunderbird with Enigmail
By Starchy Grant, Soraya Okuda, and Bill Budington
May 13, 2018

A how-to-do at:
https://www.eff.org/...erbird-enigmail


Disabling PGP in Apple Mail with GPGTools
By Soraya Okuda, Starchy Grant, and Bill Budington
May 13, 2018

A how-to-do at:
https://www.eff.org/...e-mail-gpgtools

Disabling PGP in Outlook with Gpg4win
By Soraya Okuda, Starchy Grant, and Bill Budington
May 13, 2018

A how-to-do at:
https://www.eff.org/...outlook-gpg4win

 



#4 TheSentinel

TheSentinel

    The man in the dark

  • General Admin
  • 31,817 posts

Posted 14 May 2018 - 06:12 PM

Researchers disclosed details of EFAIL attacks on in PGP and S/MIME tools. Experts believe claims are overblown

EFAIL attacks - Researchers found critical vulnerabilities in PGP and S/MIME Tools, immediately disable and/or uninstall tools that automatically decrypt PGP-encrypted email. A few hours ago, I reported the news that security researchers from three...

May 14, 2018  By Pierluigi Paganini   Posted In  Breaking News  Hacking

Read the complete article at:
https://securityaffa...il-attacks.html