![](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_shKpZCHMauStadZmzmsilfeNi_XsfaYXD_Ed1hXKLrTLuLL5ndcPokFSfpxdAkMDtgPemn78LjGORAi5bTGGbj4fZPhGybL9b_-3EOlYgBP-lJI18Os-6D06N10mz0rw=s0-d)
A newfound flaw in email clients that use PGP and S/MIME to encrypt messages can be exploited to expose the plain text of the missives, according to a new paper. By injecting malicious snippets of text into encrypted messages, attackers can use the flaw to make the email client exfiltrate decrypted copies of the emails, explained the authors, a team of researchers from three European universities. Malicious action is triggered as soon as a recipient opens a single crafted email from an attacker, they wrote.
from TechNewsWorld https://ift.tt/2GiBNy1
Comments
Post a Comment