Security News > 2018 > May > Details on a New PGP Vulnerability

Details on a New PGP Vulnerability
2018-05-14 18:36

A new PGP vulnerability was announced today. Basically, the vulnerability makes use of the fact that modern e-mail programs allow for embedded HTML objects. Essentially, if an attacker can intercept and modify a message in transit, he can insert code that sends the plaintext in a URL to a remote website. Very clever. The EFAIL attacks exploit vulnerabilities in the...


News URL

https://www.schneier.com/blog/archives/2018/05/details_on_a_ne.html