security vulnerability

A unified timeline of Efail PGP disclosure events

2018/05/16: Timeline of the Efail vulnerabilities disclosures to PGP vendors and usersRead more

Trapdoor commitments in the SwissPost e-voting shuffle proof

2019/03/12 : Report of researchers who found a vulnerability in the SwissPost e-voting shuffle. The trapdoor commitment scheme allows an undetectable vote manipulation.

Full version hereRead more

Gravierender Mangel am E-Voting-System der Post entdeckt (Republik article)

2019/03/12: Republik article about the vulnerability reported by  security researcher in the Swiss Post e-voting systemRead more

‘Trojan Source’ Bug Threatens the Security of All Code (Krebs on Security)

2021/11/01 : Brian Krebs explains the vulnerability “Trojan Source” in his blog.

Read more

Verschlüsselte E-Mails sind nicht sicher (Süddeutsche article)

2018/05/14: Article on the EFAIL vulnerbilities concerning OpenPGP and S/MIME encrypted emailRead more

Encrypted Email Has a Major, Divisive Flaw (Wired article)

2018/05/14: Article on the story of the EFAIL vulnerabilities concerning OpenPGP and S/MIME encrypted emailRead more

Statement on Efail research (Gpg4win)

2018/05/17: Gpg4win statement regarding the EFAIL vulnerabilities and its media coverageRead more

Release of source code leads to discovery of flaw in Swiss Post’s new e-voting system (Federal Chancellery press release)

2019/03/12: Federal Chancellery official press release about the flaws found in the Swiss Post e-voting system. The Federal Chancellery calls for Swiss Post to review and improve it's system's security process and "will review the relevant certification and authorization procedures." The...Read more

Error in the source code discovered and rectified (Swiss Post press release)

2019/03/12: Swiss Post official press release reacting to the vulnerability found by security researchers during the public intrusion test on their e-voting system.Read more

Subscribe to security vulnerability