Release Announcement

SecureDrop 2.7.0 Released

SecureDrop 2.7.0 has been released. This release includes a migration to Sequoia-PGP as the supported encryption backend, continuous localization support, and several other improvements. Read More

Interest Article

Migrating SecureDrop’s PGP backend from GnuPG to Sequoia

In the upcoming SecureDrop 2.7.0 release, we’ve made a technical change that will be invisible to users but improve reliability and robustness — and provide better security going forward.SecureDrop relies on the OpenPGP standard for encrypting all data and messages that pass through the server. Historically, we have used GnuPG, or GPG for this; we are now switching to the newer Sequoia-PGP library implemented in Rust.In this blog post, we’ll give an overview of the encryption in SecureDrop, and explain why and how we switched to Sequoia. Read More

Pre-Release Announcement

SecureDrop 2.7.0 Pre-Release Announcement

SecureDrop 2.7.0 is scheduled to be released on November 2, 2023. We will send out another notification through this blog, Mastodon, X (formerly Twitter), and the support portal when the release is live. Changes that journalists and administrators should be aware of are summarized in this blog post. Read More

Release Announcement

SecureDrop 2.6.1 Released

We’re pleased to announce that SecureDrop 2.6.1 has been released. This point release contains an update for Tails workstations only. Server code is not affected and will remain at version 2.6.0. Read More

Interest Article

Future directions for SecureDrop

Going forward, new features for SecureDrop will be focused on the Qubes OS-based SecureDrop Workstation. We are also developing a next-generation SecureDrop messaging and encryption protocol. This post discusses the motivations behind these new directions and explains what they mean for SecureDrop users and contributors. Read More

Release Announcement

SecureDrop 2.6.0 Released

We’re pleased to announce that SecureDrop 2.6.0 has been released. Server code will be automatically updated within 24 hours.This release includes a new SecureDrop menu for journalists and admins, more descriptive page titles, as well as other security improvements and bugfixes. Read More

Security Advisory

Security Advisory: Update encrypted USB drives and replace short passphrases

We recommend that all SecureDrop Administrators upgrade to Tails 5.14, which includes important updates to the disk encryption and passphrase hashing algorithms. We also recommend updating all other encrypted drives, and ensuring you have long passphrases. Read More

Pre-Release Announcement

SecureDrop 2.6.0: Pre-Release Announcement

SecureDrop 2.6.0 is scheduled to be released on June 22, 2023. Read More