FlowCrypt Is Safe From Efail Attacks

The team at Efail recently published findings about vulnerabilities that affect some PGP email clients: EFF warning, efail website.

In response, the OpenPGP community has been testing their software and providing patches. Some implementations weren’t vulnerable, and others have since released security patches or provided workarounds so that their users aren’t affected.

As for FlowCrypt, we released a software update within six hours of the announcement.

If you use our Android app, check for updates in the Google Play Store. The Chrome and Firefox extensions will update automatically. You can double-check that you are on version 5.4.8 or higher in the FlowCrypt Settings. If your extension hasn’t been updated, please make sure that you haven’t disabled updates and, if so, re-enable them. If the extension still hasn’t been updated, then you can uninstall and reinstall the latest version to ensure you’re up to date.