Efail: researchers reveal worrying, unpatched vulnerabilities in encrypted email
by Cory Doctorow from on (#3Q5Y6)
A group of researchers have published a paper and associated website describing a clever attack on encrypted email that potentially allows an attacker to read encrypted emails sent in the past as well as current and future emails; EFF has recommended switching off PGP-based email encryption for now, to prevent attackers from tricking your email client into decrypting old emails and sending them to adversaries. (more")