14 May 2018

Statement about eFail email encryption vulnerability.

Today we learned through Electronic Frontier Foundation (EFF) of an exploit known as efail that can compromise the text of OpenPGP encrypted messages through a combination of factors.

Developers at Encryptomatic LLC will be studying this issue in the hours and days ahead and will respond with software updates to Encryptomatic OpenPGP for MS Outlook if mitigation is necessary.

EFF is advising all PGP users to pause in their use of OpenPGP email encryption tools and seek other modes of secure end-to-end communication for now. This would include halting the use of Enigmail in Thunderbird, GPG for Outlook, and Encryptomatic OpenPGP for Outlook.