- Joined
- Jun 28, 2017
- Messages
- 6,805
- Reaction score
- 648
Security flaw let attackers forge PGP signatures
Security researcher Marcus Brinkmann has discovered a security flaw in GnuPG which potentially allowed attackers to spoof the digital signatures of nearly any person with a public key, Ars Technica reported.
Dubbed SigSpoof, Brinkmann said the vulnerability has the potential to affect a large part of the web’s core infrastructure.
Security researcher Marcus Brinkmann has discovered a security flaw in GnuPG which potentially allowed attackers to spoof the digital signatures of nearly any person with a public key, Ars Technica reported.
Dubbed SigSpoof, Brinkmann said the vulnerability has the potential to affect a large part of the web’s core infrastructure.