EFAIL: Why You SHOULDN'T Remove PGP and SHOULD Manage Your Threat Models

Author(s): Logan Rohde, John Wethington

This note offers information on the recently publicized OpenPGP and S/MIME vulnerability known as EFAIL. It recommends that users of OpenPGP should observe additional security measures but do not need to uninstall the software as others have suggested.

Tags

EFAIL, OpenPGP, S/MIME, Electronic Frontier Foundation, end-to-end encryption, vulnerabilities, cybersecurity, corporate communications, cyberattack, man-in-the-middle attack, EFF, schinzel

Related Content: Security

Thought model representing Implement Risk-Based Vulnerability Management

Implement Risk-Based Vulnerability Management
Thought model representing Select and Implement a Next Generation Endpoint Protection Solution

Select and Implement a Next Generation Endpoint Protection Solution
Thought model representing Integrate Threat Intelligence Into Your Security Operations

Integrate Threat Intelligence Into Your Security Operations
Thought model representing Develop and Implement a Security Incident Management Program

Develop and Implement a Security Incident Management Program
Thought model representing Defend Against Ransomware

Defend Against Ransomware
© Info-Tech Research Group | Terms of Use | Privacy Policy