Efail Vulnerability and its Impact on Encrypted Email - Linux Security Podcast Ep 8

Linux Security Podcast

English - May 31, 2018 21:31 - 12 minutes - 29.5 MB - ★★★★★ - 1 rating
Technology atomicorp cybersecurity endpointprotection linuxsecurity mikeshinn scottshinn waf Homepage Download Apple Podcasts Google Podcasts Overcast Castro Pocket Casts RSS feed

Previous Episode: What is OSSEC and Why People Use It - Linux Security Podcast Ep 7

Next Episode: CVEs Explained. What They Are and How They're Used - Linux Security Podcast Ep 9

The Efail vulnerability has been in the news lately and has many people rushing to remove encryption from their email clients. The vulnerability does impact S/MIME and PGP users, but only a subset of them. That means a lot of people are removing encryption from their email unnecessarily and putting themselves at risk. Atomicorp CEO and long-time Red Team professional Mike Shinn discusses what Efail is, how the exploit works and why the notification process was handled poorly. If you ever need to use encrypted email, you should definitely listen to this episode.