Why you need a private email service now
You probably know someone or have heard a really scary case of hacking or scamming. What you probably do not know however is that more than 80% of all successful...
Category: Security
Welcome to the Security archives of the Mailfence Blog.
Mailfence is not impacted by OpenPGP signature spoofing vulnerabilities
New vulnerabilities in many OpenPGP and S/MIME enabled email clients were announced on 2019-04-30. These signature spoofing vulnerabilities exploit weaknesses in the way OpenPGP signatures are verified by email clients...
Encryption Backdoors: Can they work?
Certain events have led to renewed calls from governments and law enforcement for more sophisticated tools for monitoring suspects. One idea that has received renewed attention is ‘encryption backdoors.’ An encryption backdoor...
Email Headers: How to read and use message headers
This blogpost will explain how to read and understand the ’email header’ which travels with every email. It contains details about the sender, taken route and the receiver. Use this...
Mailfence is not impacted by Efail vulnerabilities
New vulnerabilities in many OpenPGP and S/MIME enabled email clients were announced yesterday. These “Efail” vulnerabilities have attracted a lot of attention in the media. As per our analysis, Mailfence...
OpenPGP, S/MIME, Secure Message Escrow: Which E2E encryption is best?
From SMTP to OpenPGP, S/MIME and Secure Message Escrow Emails have been the epicenter of online communication for decades now. Unfortunately the underlying protocol called SMTP (Simple Mail Transfer Protocol),...
OpenPGP digital signature best practices
In a recent post, we discussed the OpenPGP encryption best practices. Digital signatures on the other hand are also a vital part of OpenPGP which gets used both by advanced and entry level users....
OpenPGP encryption best practices
Strong encryption is no longer a privilege of geeks and paranoids, but is becoming mainstream. However, true end-to-end encryption is not out-of-the-box and generally requires you to activate a number of...
Mailfence blog: SSL certificate
This is a follow up of last blog post Mailfence launches new blog, and provide details over the SSL/TLS certificate for this blog. A modern browser should automatically check the...
Secure email: Why end-to-end encryption is at the heart of it
Everybody wants your data one way or the other. It’s not just the NSA, Google, Facebook or your phone provider. Even your torch app or online store tries to get access to your...