EUVD-2021-16408

Malware in sbrugna...

CVE-2021-29949

When loading the shared library that provides the OTR protocol implementation, Thunderbird will initially attempt to open it using a filename that isn't distributed by Thunderbird. If a computer has already been infected with a malicious library of the alternative filename, and the malicious...

CVE-2021-29949

When loading the shared library that provides the OTR protocol implementation, Thunderbird will initially attempt to open it using a filename that isn't distributed by Thunderbird. If a computer has already been infected with a malicious library of the alternative filename, and the malicious...

Design/Logic Flaw

When loading the shared library that provides the OTR protocol implementation, Thunderbird will initially attempt to open it using a filename that isn't distributed by Thunderbird. If a computer has already been infected with a malicious library of the alternative filename, and the malicious...

CVE-2021-29949

When loading the shared library that provides the OTR protocol implementation, Thunderbird will initially attempt to open it using a filename that isn't distributed by Thunderbird. If a computer has already been infected with a malicious library of the alternative filename, and the malicious...

CVE-2021-29949

When loading the shared library that provides the OTR protocol implementation, Thunderbird will initially attempt to open it using a filename that isn't distributed by Thunderbird. If a computer has already been infected with a malicious library of the alternative filename, and the malicious...

CVE-2021-29949

CVE-2021-29949 concerns Thunderbird and the OTR protocol library loading. The issue: during startup, Thunderbird may load a shared OTR library using a filename not distributed by Thunderbird. If a system already hosts a malicious copy of that alternative filename and the library is on the executa...

Remote Code Execution (RCE)

thunderbird is vulnerable to remote code execution. The vulnerability exists due to the system attempting to open a shared library that provides OTR protocol implementation using a filename that is not distributed by Thunderbird...

CVE-2021-29949

When loading the shared library that provides the OTR protocol implementation, Thunderbird will initially attempt to open it using a filename that isn't distributed by Thunderbird. If a computer has already been infected with a malicious library of the alternative filename, and the malicious...

CVE-2021-29949

When loading the shared library that provides the OTR protocol implementation, Thunderbird will initially attempt to open it using a filename that isn't distributed by Thunderbird. If a computer has already been infected with a malicious library of the alternative filename, and the malicious...

Security Vulnerabilities fixed in Thunderbird 78.9.1 — Mozilla

If a Thunderbird user has previously imported Alice's OpenPGP key, and Alice has extended the validity period of her key, but Alice's updated key has not yet been imported, an attacker may send an email containing a crafted version of Alice's key with an invalid subkey, Thunderbird might...

EncroChat system eavesdropped on by law enforcement

Due to the level of sophistication of the attack, and the malware code, we can no longer guarantee the security of your device. This text caused a lot of aggravation, worries, and sleepless nights. No one wants to hear the security of their device has been compromised by a malware attack. The goo...

OTR.to — Secure 'Off-the-Record' p2p Encrypted Messaging Service

In this post-Snowden era of mass surveillance, being out-of-reach from the spying eyes really doesn't mean they can not get you. So, if you are concerned about your data privacy and are actually searching for a peer-to-peer encrypted messaging service, then it’s time to get one. "Otr.to" — an...

Encrypted Chat Service 'Cryptocat' released iOS app

http://end-to-end%20encryption%2C%20nsa%2C%20cryptocat%2C%20ios%2C%20apple%20app%20store%2C%20download%20app%2C%20secure%20chat%2C%20off-the-record%20messaging%2C...

[USN-2091-1] OTR vulnerabilities

========================================================================== Ubuntu Security Notice USN-2091-1 January 29, 2014 libotr vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

Ubuntu 12.04 LTS : libotr vulnerabilities (USN-2091-1)

This update disables the OTR v1 protocol to prevent protocol downgrade attacks. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without...

[Cryptocat] Chat Client with encrypted conversations on iPhone and Android

Cryptocat is an experimental browser-based chat client for easy to use, encrypted conversations. It aims to make encrypted, private chat easy to use and accessible. We want to break down the barrier that prevents the general public from having an accessible privacy alternative that they already...