An “efail” in email could let hackers read your encrypted messages

European security researchers have found an alarming new vulnerability in the most common forms of email encryption. The attack, described in a report published Monday morning, lets bad actors inject malicious code into intercepted emails, despite encryption protocols designed to protect against code injection. Implemented correctly, the malicious code could be used to steal the entire contents of a target’s inbox. The vulnerability affects two of the most common email encryption protocols, PGP and S/MIME, although the degree of vulnerability depends heavily on the client’s implementation of the protocol. A number of different clients are vulnerable, including Apple Mail, the Mail App on iOS, and Thunderbird. Notably, many currently... Continue reading…

Hackers could be reading your encrypted emails. Here’s how.

Researchers say they have discovered a critical flaw in email security.

Mon 14 May 18 from The Washington Post

Email security is unsafe and cannot be easily fixed, researchers say

Even old messages could be exposed by the bug, say experts

Mon 14 May 18 from The Independent

Email encryption standards hacked

Mon 14 May 18 from Phys.org

Security researchers outwit, bypass popular email encryption

Germany's cybersecurity agency says German and Belgian researchers have found a way to outwit two widely used forms of email encryption.

Mon 14 May 18 from TechXplore

EFail: Why encrypted emails are at risk and how to protect yourself

Researchers from Belgium and Germany uncovered a flaw with tools used to encrypt email messages allowing an attacker to view them in plain text.        

Tue 15 May 18 from USA today

Popular encrypted email standards are unsafe - European...

European researchers have found that the popular PGP and S/MIME email encryption standards are vulnerable to being hacked, leading them to urge people to disable and uninstall them immediately. ...

Mon 14 May 18 from Daily Mail

Security flaw could expose your encrypted emails, researchers warn - CNET

Researchers recommend you disable HTML rendering in your encrypted email clients to stop potential attacks.

Mon 14 May 18 from CNET

Popular encrypted email standards are unsafe: researchers

FRANKFURT (Reuters) - European researchers have found that the popular PGP and S/MIME email encryption standards are vulnerable to being hacked and they urge users to disable and uninstall them ...

Mon 14 May 18 from Reuters Technology

Researchers have found a vulnerability in two popular email encryption protocols

European security researchers have found an alarming new vulnerability in the most common forms of email encryption. The attack, described in a report published Monday morning, ...

Mon 14 May 18 from The Verge

Bookmark

Bookmark and Share