OpenPGP with HTML susceptible to attack vector 

General advisory that OpenPGP is susceptible to attack vectors when used with HTML attachments.

This attack can be performed on an encrypted email that an attacker has collected, including emails that have been sent.
- block all backchannels used in your email clients (only send/receive plain text)
- stay up-to-date with patches from your email client and encryption plugins. Email clients may release a patch to fix this vulnerability once the S/MIME and OpenPGP standards are updated.

We should ensure plain text attachments until this is resolved.

[see more info at cert](https://www.cert.govt.nz/it-specialists/advisories/advisory/smime-and-openpgp-vulnerability-efail)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

OpenPGP with HTML susceptible to attack vector #9

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

OpenPGP with HTML susceptible to attack vector #9

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions