26 Sep Adobe Mistakenly Posts PGP Key on Blog
Last Friday, Adobe’s product security incident response team (PSIRT) accidentally posted their private PGP key on the company’s security blog, an incident which has left the company extremely red-faced.
PGP, or “Pretty Good Privacy” is a system used for encrypted messaging over the Internet. Anybody who has the key will be able to decrypt all communications made with the PGP system. While Adobe immediately took down the post and revoked the key, it did not escape the attention of a few users who took screenshots of the blunder.
Paul Ducklin of Sophos noted that by revealing one’s PGP/GPG private key, communication will be compromised in either direction: both the sender and the recipient will be affected.