PGP is a type of email encryption. PGP stands for “Pretty Good Privacy.” PGP encryption is used by some of the bigger guys such as Apple Mail, Outlook, and Thunderbird. A critical vulnerability has been exposed by some German researchers and they have tweeted that there are no fixes available, and their immediate suggestion is to stop using PGP altogether. They suggest there will be more on the story released tomorrow and they did suggest that all of these companies that use PGP have been previously warned of this situation. EFF has a write up on this also with all the links you need if reading Twitter is not your thing.

UPDATE: It was just tweeted that due to information embargoes on this being broken, the full details of #efails attacks have been disclosed.



We’ll publish critical vulnerabilities in PGP/GPG and S/MIME email encryption on 2018-05-15 07:00 UTC. They might reveal the plaintext of encrypted emails, including encrypted emails sent in the past.

Discussion

Source: [H]ardOCP – PGP Email has Critical Flaw