SecureDrop Workstation instances using Qubes 4.1 have reached end-of-life, and will not receive security updates after July 31, 2024.SecureDrop Workstation 1.0.0 is based on Qubes 4.2; users should migrate to it as soon as possible. Our backup and restore documentation covers the steps that are required to migrate to SecureDrop … Read More

The SecureDrop team is planning to shut down the SecureDrop forum at https://forum.securedrop.org/ on July 30, 2024. Read More

SecureDrop Workstation 1.0.0 has been released! This is the first release targeting Qubes 4.2 and will require a full reinstall. With 1.0.0, we’re now switching to an open beta: if you are interested in using SecureDrop Workstation, please reach out to us! Read More

We're pleased to announce that SecureDrop Workstation 0.11.1 and SecureDrop Client 0.10.2 have just been released.These releases target the Qubes 4.1-based version of SecureDrop Workstation and update the SecureDrop Release Key expiration date. Pilot participants must run the SecureDrop Workstation updater before July 7, 2024 to receive this update.Changes in … Read More

We’re pleased to announce that SecureDrop 2.9.0 has been released. Changes that journalists and administrators should be aware of are summarized in this blog post. A complete list of changes can be found on GitHub. Read More

SecureDrop 2.9.0 is scheduled to be released on June 27, 2024. We will send out another notification through this blog, Mastodon, X, and the support portal when the release is live. Changes that journalists and administrators should be aware of are summarized in this blog post. A complete list of changes can be found on GitHub. Read More

SecureDrop Workstation 0.11.0 has been released. This release updates various system VMs to use Fedora 39. Users will receive this update the next time they run the updater, which is likely to take longer than usual.Changes in this release:Update 4.1 SDW to use Fedora 39 (#1000)SecureDrop Workstation Pilot StatusSecureDrop Workstation … Read More

This blog post is a part of a series about our research toward the next generation of the SecureDrop whistleblowing system. If you haven’t been following along, check out our previous post for some recommended context.Here, we present a proposed end-to-end encryption protocol for a future version of SecureDrop server, … Read More