As of May 1, 2019, Ubuntu 14.04 (Trusty) has reached End of Life. SecureDrop instances running Trusty will no longer receive security updates for operating system packages, the kernel, or SecureDrop itself.  This means that a sufficiently severe vulnerability discovered in any of those components may permit an adversary to ... Read More

Today we are announcing the release of SecureDrop 0.12.2. This point release adds hardware support for newer generation Intel NUCs via an updated kernel, improves the reliability of the backup script for large backups, and includes several other smaller fixes and updates. It also will disable source interface submissions on ... Read More

Today we’re making public on GitHub the code that powers the SecureDrop.org website. SecureDrop has been open source since its inception. Starting today, its website is as well, under the same GNU Affero General Public License (AGPL). Read More

Today we are announcing the release of SecureDrop 0.12.1. This point release is mainly focused on providing a smoother upgrade experience from Ubuntu 14.04 (Trusty) to Ubuntu 16.04 (Xenial). A complete list of changes can be found on GitHub. Reminder: If you have not done so already, you must manually ... Read More

SecureDrop installations set up before version 0.12.0 (released on February 26, 2019) that have not been upgraded yet are using Ubuntu 14.04 LTS (Trusty) as the server operating system. On April 30 2019, Trusty will reach End of Life, and will no longer receive security updates. If you have not ... Read More

We are pleased to announce the release of SecureDrop 0.12.0. Changes that sources, journalists and administrators should be aware of are summarized in this blog post. A complete list of changes can be found on GitHub. Important: This release is the first to support Ubuntu 16.04 (Xenial). All existing SecureDrop ... Read More

The release of the next version of SecureDrop, 0.12.0, is scheduled for February 26, 2019. We will send out another notification through this blog, Twitter, and the support portal when the release is live. Changes that journalists and administrators should be aware of are summarized in this blog post. A ... Read More

How do whistleblowers find out about a news organization’s SecureDrop? The most common answer is a landing page, an ordinary web page hosted by the organization operating a SecureDrop. It explains how sources can download the Tor browser, and how they can safely connect to the onion address of the ... Read More