Bleeping Computer

Public Certificate Poisoning Can Break Some OpenPGP Implementations

OpenPGP installations can grind to a halt and fail to verify the authenticity of downloaded packages as the keyserver network has been flooded with bogus extra signatures attesting ownership of a ...
Threat Post

PGP Ecosystem Targeted in ‘Poisoning’ Attacks

Two researchers are being singled out in what are called PGP poisoning or flood attacks that render the authentication tool unusable for victims. A long-feared attack ...
LinuxInsider

OpenPGP Studio Keeps Prying Eyes Off Your Personal Data

GoAnywhere OpenPGP Studio is an easy-to-use, cross-platform desktop tool by Linoma Software that protects files using the OpenPGP encryption standard. Why opt for this relative newcomer instead of ...
PC World

OpenPGP JavaScript Implementation Allows Webmail Encryption

Researchers from German security firm Recurity Labs have released a JavaScript implementation of the OpenPGP specification that allows users to encrypt and decrypt webmail messages. Called ...
CSOonline

Critical flaw in OpenPGP.js raises alarms for encrypted email services

A newly discovered flaw in OpenPGP.js, a JavaScript cryptography library used by services like Proton Mail, could allow attackers to spoof messages that appear securely signed and encrypted, security ...