EFF Warns Against PGP, Reveals Vulnerabilities

The Electronic Frontier Foundation (EFF) recently advised users to immediately disable or uninstall PGP upon discovering a number of vulnerabilities that could reveal the contents of email previously thought to be encrypted.

EFF’s claims were supported by researchers who also said that there are currently no known fixes for the flaws and told users to instead consider using end-to-end secure channels, such as Signal.

The foundation has also created guides for disabling PGP in Outlook using Thunderbird and Enigmail, Gpg4win, and Apple Mail with GPGTools.

GnuPG however, tweeted that the EFF merely found mail clients which do not properly check for decryption errors and also follow links in HTML mails, insisting that the vulnerability is in the mail clients and not in the protocols.

Source: ZDNet