Tag: us-cert
-
Weak cryptography keys allow others to add valid DKIM signatures to fake emails
512-bit key cracked within 72 hours. A Florida-based mathematician has caused a stir in the email community by adding a valid DKIM signature for google.com to an email after cracking the company’s private signing-key. When the first SMTP standard was published just over three decades ago, email spam barely existed. The email landscape has changed…