On Mon, 9 May 2016 15:04, egnun@gmx.de said:
"200+ PGP keys (and counting) publicly broken […]" via @nixcraft [1] http://phuctor.nosuchlabs.com/phuctored
Yeah, that are keys mangled by a broken keyservers. Although they have composite primes the private keys won't have them. We analyzed them last fall already. A well known Linux hacker does now understand why he often receives mails which he can't decrypt: Because those senders use a mangled subkey of him.
See also a recent discussion on the gnupg-users ML.
Salam-Shalom,
Werner