Linux Journal

Pretty Good Privacy (PGP) and Digital Signatures

If you have sent any plaintext confidential emails to someone (most likely you did), have you ever questioned yourself about the mail being tampered with or read by anyone during transit? If not, you ...
ZDNet

PGP security weakness exposed

How do you know someone is really who they say they are? In developer and security circles, you do it with Pretty Good Privacy (PGP) keys. Or, you used to anyway. If ...
Sydney Morning Herald

When PGP signatures can be misleading

The trust that PGP signatures generates can be deceptive, one researcher, a regular poster to the full-disclosure vulnerability mailing list, has discovered. Gadi Evron, an information security ...
InfoWorld

Lesson from Linux Mint breach: Trust is not enough

No one ever looks at checksums, claims the attacker behind the Linux Mint breach. That needs to change. The attack against Linux Mint’s website, where users were tricked into downloading a modified ...