Hosted on MSN

Freshly discovered bug in OpenPGP.js undermines whole point of encrypted comms

Security researchers are sounding the alarm over a fresh flaw in the JavaScript implementation of OpenPGP (OpenPGP.js) that allows both signed and encrypted messages to be spoofed.… Discovered by ...
Ars Technica

Sending an OpenPGP/MIME signed message with attachement gets rejected by Exchange?

If I send a signed message, it works.<BR><BR>An unsigned message with attachment works.<BR><BR>But a signed message with an attachment fails.<BR><BR><pre class="ip ...
CSOonline

Critical flaw in OpenPGP.js raises alarms for encrypted email services

A newly discovered flaw in OpenPGP.js, a JavaScript cryptography library used by services like Proton Mail, could allow attackers to spoof messages that appear securely signed and encrypted, security ...