Back to Insights
EFAIL Vulnerability Exposes Encrypted Email
May 14, 2018 | Encryption, Digital Signatures, Certificates, Tokenization
On May 14, 2018, security researchers tweeted details and launched a website (efail.de
) explaining how attackers could exploit “EFAIL” vulnerabilities to extract plain text from encrypted emails. The vulnerability impacts both the Pretty Good Privacy (PGP) and S/MIME methods of email encryption, which are commonly used in Microsoft Outlook.