We are pleased to announce the release of SecureDrop 0.9.0. This release includes a kernel update, a new feature to enable journalists to download their replies to sources, an API for the Journalist Interface, and an upgraded version of Tor. Changes that journalists and administrators should be aware ... Read More

The release of the next version of SecureDrop, 0.9.0, is scheduled for September 5, 2018. We will send out another notification through this blog, Twitter, and the support portal when the release is live. Changes that journalists and administrators should be aware of are summarized in this blog ... Read More

Come work on SecureDrop at the Electronic Frontier Foundation offices on Wednesday, August 15, 2018! Event details:  Location: 815 Eddy St, San Francisco, CA 94109  Date: 6:00PM to 9:00PMSecureDrop is a whistleblower submission system that media organizations use to securely accept documents from and communicate with anonymous sources ... Read More

We are pleased to announce the release of SecureDrop 0.8.0. This release includes a kernel update, the removal of two-factor authentication for console logins, and smaller user interface changes and bugfixes. Changes that journalists and administrators should be aware of are summarized in this blog post. A complete ... Read More

The release of the next version of SecureDrop, 0.8.0, is scheduled for June 26, 2018. We will send out another notification through this blog, Twitter, and the support portal when the release is live. Changes that journalists and administrators should be aware of are summarized in this blog ... Read More

Through the last year, the Freedom of the Press Foundation (FPF) has sponsored the development of a prototype for an integrated SecureDrop Workstation based on Qubes OS. Thanks to the work of developer Joshua Thayer, we now have a working prototype that combines the Journalist Workstation and Secure Viewing Station ... Read More

We are pleased to announce the release of SecureDrop 0.7.0. This release includes support for administering SecureDrop servers over the local network (as opposed to using Tor), and for enabling a minimalist daily email notification about new submissions. These and other changes that journalists and administrators should be ... Read More

Today, security researchers disclosed vulnerabilities, collectively called EFAIL, in how the decryption and display of PGP-encrypted emails are handled in multiple email clients (see EFAIL website, EFAIL paper). SecureDrop submissions are not sent via email, and can only be decrypted on the air-gapped Secure Viewing Station, so the content of ... Read More