Vulnerabilities in PGP and S/MIME

We have been following a story that appeared recently about vulnerabilities in PGP and S/MIME that can cause a leak of the plaintext content of encrypted emails.

A technical description of the vulnerabilities can be found at https://efail.de/

There are a number of possible mitigations for the vulnerabilities, and they vary in how much they might impact your use of encryption. As we have help pages about how to use encryption with email, we felt we should let you know about these particular vulnerabilities.

print

2 thoughts on “Vulnerabilities in PGP and S/MIME”

  1. Here’s the winning question — are either of Runbox’s webmail clients vulnerable to these attacks? Existing and Beta?

    Please kindly update your post to reassure us.

Leave a Reply

Your email address will not be published. Required fields are marked *