A weakness in the OpenPGP and S/MIME standard has been disclosed to multiple vendors. The researchers have published a paper describing a proof of concept exploit that will allow an attacker to de-crypt previously acquired user messages. CVE-2018-17688 and CVE-2018-17689 have been assigned to track these vulnerabilities. OpenPGP is an internet standards document that describes the operation … Continue reading “OpenPGP and S/MIME Vulnerabilities”