Hacker News
- EFail – Vulnerabilities in end-to-end encryption technologies OpenPGP and S/MIME https://efail.de/ 288 comments
Lobsters
- Efail: Breaking S/MIME and OpenPGP Email Encryption using Exfiltration Channels https://efail.de/ 30 comments cryptography , security
- EFAIL - EFAIL describes vulnerabilities in the end-to-end encryption technologies OpenPGP and S/MIME that leak the plaintext of encrypted emails https://efail.de/ 4 comments privacy
- Beware if you're using PGP or S/MIME https://efail.de/ 18 comments sysadmin
- EFAIL - leaking plaintext from OpenPGP-protected emails (and S/MIME) https://efail.de/ 10 comments programming
- "Due to our embargo being broken, here are the full details of the #efail attacks." https://efail.de/ 47 comments linux
Linking pages
- GitHub - Lissy93/awesome-privacy: 🦄 A curated list of privacy & security-focused software and services https://github.com/Lissy93/awesome-privacy 115 comments
- Email explained from first principles https://explained-from-first-principles.com/email/ 109 comments
- ROT256 : Cryptography & Other Random Bits. https://rot256.dev/post/pass/ 102 comments
- Security flaws found in Apple Mail can reveal encrypted email as plaintext - 9to5Mac https://9to5mac.com/2018/05/14/apple-mail-security-flaw-encrypted-email/ 99 comments
- GitHub - tls-attacker/TLS-Padding-Oracles: New TLS Padding Oracles https://github.com/RUB-NDS/TLS-Padding-Oracles 53 comments
- We're calling it: PGP is dead | WIRED UK https://www.wired.co.uk/article/efail-pgp-vulnerability-outlook-thunderbird-smime 50 comments
- A history of end-to-end encryption and the death of PGP https://www.cryptologie.net/article/487/a-history-of-end-to-end-encryption-and-the-death-of-pgp/ 47 comments
- Critical PGP and S/MIME bugs can reveal encrypted emails—uninstall now [Updated] | Ars Technica https://arstechnica.com/information-technology/2018/05/critical-pgp-and-smime-bugs-can-reveal-encrypted-e-mails-uninstall-now/ 43 comments
- age and Authenticated Encryption https://words.filippo.io/dispatches/age-authentication/ 31 comments
- No, PGP is not broken, not even with the Efail vulnerabilities | Proton https://protonmail.com/blog/pgp-vulnerability-efail/ 31 comments
- Authenticated encryption: why you need it and how it works - Andrea Corbellini https://andrea.corbellini.name/2023/03/09/authenticated-encryption/ 4 comments
- Surveying Pretty Good Privacy After Three Decades - ExceptionFactory https://exceptionfactory.com/posts/2021/08/16/surveying-pretty-good-privacy-after-three-decades/ 3 comments
- Pluralistic: Ireland’s privacy regulator is a gamekeeper-turned-poacher (15 May 2023) – Pluralistic: Daily links from Cory Doctorow https://pluralistic.net/2023/05/15/finnegans-snooze/#dirty-old-town 1 comment
- Open source cryptography takes a step forward with the release of OpenPGPjs 4.0 | Proton https://protonmail.com/blog/openpgpjs-4-streaming-encryption/ 0 comments
- GitHub - agrim123/reading-material: List of some useful blogs, books, courses, papers etc. https://github.com/agrim123/reading-material 0 comments
- EFAIL and KMail | KDE.news https://dot.kde.org/2018/05/15/efail-and-kmail 0 comments
- Tampering with OpenPGP digitally signed messages by exploiting multi-part messages – Bentham’s Gaze https://www.benthamsgaze.org/2018/05/15/tampering-with-openpgp-digitally-signed-messages-by-exploiting-multi-part-messages/ 0 comments
- GitHub - hannob/vulns: Named vulnerabilities and their practical impact https://github.com/hannob/vulns 0 comments
- Decade-old Efail flaws can leak plaintext of PGP- and S/MIME-encrypted emails | Ars Technica https://arstechnica.com/information-technology/2018/05/decade-old-efail-attack-can-decrypt-previously-obtained-encrypted-e-mails/ 0 comments
- Best ways to send an encrypted email in 2021 | by Eugene Hauptmann | reactivelions | Medium https://medium.com/reactivelions/best-ways-to-send-encrypted-email-in-2021-f76284db0d51 0 comments
Linked pages
- End-to-end encryption - Wikipedia https://en.wikipedia.org/wiki/End-to-end_encryption 203 comments
- Attention PGP Users: New Vulnerabilities Require You To Take Action Now | Electronic Frontier Foundation https://www.eff.org/deeplinks/2018/05/attention-pgp-users-new-vulnerabilities-require-you-take-action-now 134 comments
- Pretty Good Privacy - Wikipedia https://en.wikipedia.org/wiki/Pretty_Good_Privacy 123 comments
- Critical PGP and S/MIME bugs can reveal encrypted emails—uninstall now [Updated] | Ars Technica https://arstechnica.com/information-technology/2018/05/critical-pgp-and-smime-bugs-can-reveal-encrypted-e-mails-uninstall-now/ 43 comments
- Transport Layer Security - Wikipedia https://en.wikipedia.org/wiki/Transport_Layer_Security#Session_tickets 1 comment
- PGP/SMIME: Thunderbird-Update notwendig, um E-Fail zu verhindern - Golem.de https://www.golem.de/news/pgp-smime-thunderbird-update-notwendig-um-efail-zu-verhindern-1805-134472.html 1 comment
- MIME - Wikipedia http://en.wikipedia.org/wiki/MIME#MIME-Version 1 comment
- There’s No Protecting Apple Mail Messages Against EFAIL https://theintercept.com/2018/05/25/in-apple-mail-theres-no-protecting-pgp-encrypted-messages/ 0 comments
- Block cipher mode of operation - Wikipedia https://en.wikipedia.org/wiki/Block_cipher_mode_of_operation 0 comments