Home / Early Warning / Cybersecurity Highlights / Posted the private PGP key of the Adobe security team

Posted the private PGP key of the Adobe security team

09/22/2017

As researcher Juho Nurminen has reported in his Twitter account, Adobe has accidentally released the PGP cryptographic protocol private key they use for e-mail communications from their security team. This incident, if not resolved in time, could have resulted in an attacker reading the company's encrypted e-mails, violating confidential communication with the company.

This failure occurred because an inexperienced employee of the company selected an incorrect option in the program Mailvelope at the time of publishing the public key, with which also published the private. Adobe has already fixed the problem by removing the old keys and generating new ones.