Before anyone freaks out about "efail", realize that using it would be: 1) extremely easy to detect 2) archived in your target's email As an attacker, I could not care less about this technique. It's intellectually neat, but operationally stupid. https://efail.de/efail-attack-paper.pdf …
-
Show this thread
-
Most of us archive our entire history of email. The efail team could have released scripts that review your mailbox for signs of exploitation. Don't you think an img tag wrapping the multipart header would stick out a bit? Even the CFB/CBC gadget is discoverable after decrypting.
2 replies 10 retweets 31 likesShow this thread -
I also don't see any attempt to coordinate with major MTAs (e.g., Google or Microsoft). MTAs could have set up detections for direct exploitation and, likely, reviewed everyone's mailboxes for already delivered mail.pic.twitter.com/26SojYl2xb
2 replies 7 retweets 26 likesShow this thread -
Replying to @dguido
Apparently GnuPG learned about this second hand from a copy of the paper provided to an MUA, which makes all the hate being thrown at GnuPG even weirder.
1 reply 0 retweets 0 likes
Dan Guido Retweeted Filippo Valsorda
IMHO GnuPG deserves the hate.https://twitter.com/FiloSottile/status/996025829032431616 …
Dan Guido added,
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.