Researcher details SigSpoof, a recently patched critical flaw in PGP that allowed hackers to spoof digital email signatures, says the bug dates back to 1998 (Dan Goodin/Ars Technica)

Dan Goodin / Ars Technica:
Researcher details SigSpoof, a recently patched critical flaw in PGP that allowed hackers to spoof digital email signatures, says the bug dates back to 1998  —  SigSpoof flaw fixed inGnuPG, Enigmail, GPGTools, and python-gnupg.  —  For their entire existence, some of the world's …

from Techmeme https://ift.tt/2lfEicx