Techly NewsGet the app

Get the latest tech news

BIMI and DMARC Can't Save You: The Overlooked DKIM Exploit


Analysts at Zone.eu, one of the leading domain registrars and web hosting providers in Europe, have observed a vulnerability affecting the global e-mail ecosystem, stemming from unaddressed warnings in the DomainKeys Identified Mail (DKIM) standard that puts billions of users in risk. This is not an issue in a particular software product but rather a […]

Analysts at Zone.eu, one of the leading domain registrars and web hosting providers in Europe, have observed a vulnerability affecting the global e-mail ecosystem, stemming from unaddressed warnings in the DomainKeys Identified Mail (DKIM) standard that puts billions of users in risk. This is not an issue in a particular software product but rather a vulnerability resulting from loose interpretations of the standard across numerous implementations that span the vast e-mail ecosystem. Using this vulnerability, attackers can create forged emails that still pass DKIM’s cryptographic checks that can then be easily replayed to reach the intended victim.

Get the Android app

Or read this on Hacker News

Read more on:

Photo of DMARC

DMARC

Photo of bimi

bimi

Related news:

News photo

NSA warns of North Korean hackers exploiting weak DMARC email policies

« Microsoft to add next Call of Duty to Xbox Game Pass, WSJ reports
Ambitious but at peace »