Skip to Content
Computing

An “e-fail” in e-mail could let hackers read your encrypted messages

The flaws affect S/MIME and OpenPGP, two technologies that e-mail programs often use to protect data. 

The news:  Ars Technica reports that security researchers in Germany have uncovered a way to decrypt e-mails that rely on the above techniques. They released their findings under the banner “Efail” in a paper published today. 

The hacks: These essentially work by inserting manipulated text into an e-mail that’s been intercepted by hackers, and then sending it on to the unsuspecting recipient. Once the victim opens it, the malicious code tricks the program into sending a plain-text version back to the hacker. The researchers say new and archived e-mails are vulnerable. 

The response: Some security executives say the risk exists only in e-mail programs that don’t check for decryption errors, so it’s worth verifying whether yours does. If you’re particularly paranoid, you might choose to decrypt messages in applications that are separate from your e-mail program—a step the German researchers recommend. They’ve disclosed the vulnerability to the companies providing e-mail programs, so watch out for software patches. 

Why this matters: This hardly needs spelling out, but it’s worth noting that it’s not just an issue for companies and governments; many journalists and activists rely on encrypted e-mail to keep in touch with their sources.

Deep Dive

Computing

AI-powered 6G networks will reshape digital interactions

The convergence of AI and communication technologies will create 6G networks that make hyperconnectivity and immersive experiences an everyday reality for consumers.

The power of green computing

Sustainable computing practices have the power to both infuse operational efficiencies and greatly reduce energy consumption, says Jen Huffstetler, chief product sustainability officer at Intel.

Using data, AI, and cloud to transform real estate

AI can enable business transformation to deliver positive outcomes for clients and propel sustainability goals, according to Sandeep Davé, chief digital and technology officer at CBRE.

How this Turing Award–winning researcher became a legendary academic advisor

Theoretical computer scientist Manuel Blum has guided generations of graduate students into fruitful careers in the field.

Stay connected

Illustration by Rose Wong

Get the latest updates from
MIT Technology Review

Discover special offers, top stories, upcoming events, and more.

Thank you for submitting your email!

Explore more newsletters

It looks like something went wrong.

We’re having trouble saving your preferences. Try refreshing this page and updating them one more time. If you continue to get this message, reach out to us at customer-service@technologyreview.com with a list of newsletters you’d like to receive.