Following User Outcry, AMD Reinstates Memory Encryption In Consumer CPUs
Last week, AMD was found to have stripped memory encryption from its consumer CPUs without any warning or notice. Now, following a wave of backlash on social media, the chipmaker has now reinstated the protection, though it still hasn’t explained why the safeguard was disabled in the first place. Ars Technica reports: Following the r … ⌘ Read more

Remembering When Alan Turing Developed a Portable Voice Encryption Device
Long-time Slashdot reader smooth wombat writes: Alan Turing, one of the more famous people who worked at Bletchley Park to decipher the German Enigma coding machine, was also working on a separate project. His private papers, known as the Bayley papers for his assistant Donald Bayley who held onto the papers until his death in 2020 … ⌘ Read more

France To Stop Certifying Products Without Quantum-Safe Encryption
Starting in 2027, France’s cybersecurity agency ANSSI will stop certifying security products that lack quantum-resistant encryption, effectively forcing government agencies and critical infrastructure operators to phase out older cryptographic systems. Reuters reports: Samih Souissi, ANSSI’s chief of staff, said at the France Quantum conference … ⌘ Read more

Users Cry Foul After AMD Stripped Memory Crypto From Its Consumer CPUs
An anonymous reader quotes a report from Ars Technica: A decade ago, AMD added a protection to its high-end CPUs to protect them against cold boot attacks and other types of physical exploits that siphon sensitive data out of the connected memory chips. Short for Transparent Secure Memory Encryption, TSME encrypts the entire conten … ⌘ Read more

Signal Alums Reveal ‘Encrypted Spaces,’ a System for Making Private Collaboration Apps
The new open-source project could serve as the basis for a future of apps with features as complex as Slack, Discord, or Google Docs—but with added protection against surveillance. ⌘ Read more

The US Military Quietly Turned GPS Into a Global ‘Numbers Station,’ Evidence Suggests
A security researcher says evidence suggests the U.S. military has been using an obscure GPS message field for nearly 20 years to broadcast encrypted key-distribution data, effectively turning GPS satellites into a global “numbers station.” The hidden-looking 176-bit messages appear tied to the Pentagon’s Ove … ⌘ Read more

@movq@www.uninformativ.de TLs is cheap, we built hardware encryption modules for AES-256 which TLS still uses so you’re fine 😅

Show HN: Open-source private home security camera system (end-to-end encryption)
Hey everyone,

I previously introduced an open source private home security camera in 2024, which uses OpenMLS for end-to-end encryption: https://news.ycombinator.com/item?id=42284412.

It was called Privastead then and it’s now renamed to Secluso.

John Kaczman found my project from here and has been working on it with me over the last year and half. We’ve made a lot of improvements to the software, which w … ⌘ Read more

Browser-based file encryption tool using WebCrypto
Article URL: https://secvant.com/

Comments URL: https://news.ycombinator.com/item?id=48274018

Points: 5

# Comments: 2 ⌘ Read more

[$] The tenth OpenPGP email summit
The OpenPGP Email Summit is
an annual meeting for those who work on encrypted email and related
topics. The tenth\
installment of this meeting took place in March 2026 and the minutes
have now been published. As usual, a wide range of topics were
discussed. Highlights included support for post-quantum cryptography
(PQC) with multiple actors planning roll … ⌘ Read more

@lyse@lyse.isobeef.org

So, it’s plenty good enough for them.

Yeah, but on the other hand, you can’t even log in normally to a Matrix/Element account. I mean using username + password. It’s not expected that you ever log out or lose your browser session. If you do, you must use a one-time backup code (that you must create and save beforehand) to log in again.

To be fair, I can’t say that I fully understand what Matrix is doing in the first place. The text that I quoted reads like they have your keys. But they also claim that they only store this stuff encryped: https://element.io/en/help#encryption5 So … encrypted with what? Only option here is my password, isn’t it? (But if my password was good enough to reclaim an account … why do all the other stuff …)

Matrix takes end-to-end encryption seriously. When I ran a Matrix server for the family, the family members would regularly lose their keys, because they didn’t pay attention to something. That’s on purpose! Or rather, that was on purpose. Maybe it’s different these days?

No clue.

iPhone-Android RCS Conversations Are End-To-End Encrypted In iOS 26.5
Apple says end-to-end encryption for RCS messages between iPhone and Android is now available in iOS 26.5, though the feature is still considered beta and depends on carrier support on both sides. MacRumors reports: Apple says that it worked with Google to lead a cross-industry effort to add E2EE to RCS. iOS users will need iOS 26.5, while … ⌘ Read more

Update Your iPhone Now for Better Encrypted Messaging With Android
As part of the iOS 26.5 update, Apple’s Messages app can now encrypt texts between some iPhone and Android smartphones. ⌘ Read more

Hackable Robot Lawn Mower Unlocks a New Nightmare
Plus: Meta officially kills encrypted Instagram DMs, the Trump administration targets “violent left wing extremists,” leaked documents reveal Russia’s school for elite hackers, and more. ⌘ Read more

DM-INLINECRYPT Expected For Linux 7.2 To Leverage Inline Encryption
Queued for merging as part of the DeviceMapper changes for the upcoming Linux 7.2 kernel cycle is the new dm-inlinecrypt target for leveraging inline block device encryption… ⌘ Read more

Ransomware Is Getting Uglier As Cybercriminals Fake Leaks and Skip Encryption Entirely
“Ransomware activity jumped again in Q1 2026,” writes Slashdot reader BrianFagioli, “with 2,638 victim posts on leak sites, up 22% year over year,” according to a report from cybersecurity company ReliaQuest.

But the bigger shift is how messy the ecosystem has become. Established groups like Akira and Qil … ⌘ Read more

Red Hat’s Stratis Storage 3.9 Released With Online Encryption/Decryption/Reencryption
It’s crazy to realize it has been ten years already since Red Hat abandoned their Btrfs plans for Red Hat Enterprise Linux and dropped it, which was a technology preview feature since RHEL6. In its place Red Hat engineers began developing Stratis for next-gen Linux storage with ZFS/Btrfs-like features but instead building atop XFS, LUKS, Device Mapper, and Clevis. After a while since the last major release, Stratis Storage 3 … ⌘ Read more

GnuPG 2.5.19 released
Werner Koch has announced
the release of GnuPG 2.5.19. This release includes a few new options
and a number of bug fixes, and comes with the reminder that the
GnuPG 2.4 series will reach end-of-life soon

The main features in the 2.5 series are improvements for 64 bit Windows
and the introduction of Kyber (aka ML-KEM or FIPS-203) as PQC encryption
algorithm. Other than PQC support the 2.6 series will not differ a lot
from 2.4 because th … ⌘ Read more

Ubuntu 26.04 LTS released
Ubuntu 26.04 (“Resolute Raccoon”) LTS has been released
on schedule.

This release brings a significant uplift in security, performance,
and usability across desktop, server, and cloud environments. Ubuntu
26.04 LTS introduces TPM-backed full-disk encryption, expanded use of
memory-safe components, improved application permission controls, and
Livepatch support for Arm systems, helping reduce downtime and
strengthe … ⌘ Read more

Arch Linux’s Archinstall 4.2 Fixes Botched Disk Encryption Security
Archinstall 4.2 is now available as the latest update to this very convenient, text-based Arch Linux OS installer… ⌘ Read more

OpenSSL 4.0 Released With Encrypted Client Hello, RFC 8998 Support
OpenSSL 4.0 was just released as a big update for this widely-used SSL/TLS and crypto library… ⌘ Read more

DNA-Level Encryption Developed by Researchers to Protect the Secrets of Bioengineered Cells
The biotech industry’s engineered cells could become an $8 trillion market by 2035, notes Phys.org. But how do you keep them from being stolen? Their article notes “an uptick in the theft and smuggling of high-value biological materials, including specially engineered cells.”

In Science Ad … ⌘ Read more

Google Rolls Out Gmail End-To-End Encryption On Mobile Devices
Gmail’s end-to-end encryption is now available on all Android and iOS devices, letting enterprise users send and read encrypted emails directly in the app without any extra tools. “This launch combines the highest level of privacy and data encryption with a user-friendly experience for all users, enabling simple encrypted email for all customers from s … ⌘ Read more

Microsoft Abruptly Terminates VeraCrypt Account, Halting Windows Updates
Microsoft has apparently terminated the account VeraCrypt uses to sign its Windows drivers and bootloader, leaving the encryption project unable to publish Windows updates and throwing future releases into doubt. VeraCrypt’s developer says Microsoft gave no clear explanation or warning for the move. “I didn’t receive any emails fro … ⌘ Read more

Google Moves Post-Quantum Encryption Timeline Up To 2029
Google has moved up its post-quantum encryption migration target to 2029. “This new timeline reflects migration needs for the PQC era in light of progress on quantum computing hardware development, quantum error correction, and quantum factoring resource estimates,” said vice president of security engineering Heather Adkins and senior staff cryptology engineer Sop … ⌘ Read more

Windows PCs Crash Three Times As Often As Macs, Report Says
A workplace-device study says Windows PCs crash significantly more often than Macs, lag further behind on patching and encryption in some sectors, and are typically replaced sooner. TechSpot reports: Omnissa’s 2026 State of Digital Workspace report outlines the IT challenges that various organizations face from the growing use of AI and the heterogeneous d … ⌘ Read more

Instagram Discontinues End-To-End Encryption For DMs
Meta plans to remove end-to-end encryption (E2EE) from Instagram direct messages by May 8, 2026. “Very few people were opting in to end-to-end encrypted messaging in DMs, so we’re removing this option from Instagram in the coming months,” says Meta. “Anyone who wants to keep messaging with end-to-end encryption can easily do that on WhatsApp.” The Hacker News reports: The … ⌘ Read more

Intel Demos Chip To Compute With Encrypted Data
An anonymous reader quotes a report from IEEE Spectrum: Worried that your latest ask to a cloud-based AI reveals a bit too much about you? Want to know your genetic risk of disease without revealing it to the services that compute the answer? There is a way to do computing on encrypted data without ever having it decrypted. It’s called fully homomorphic encryption, or FHE. But ther … ⌘ Read more

OpenSSL 4.0 Alpha 1 Released With Encrypted Client Hello “ECH” & Other Features
The first alpha release of OpenSSL 4.0 is now available for testing. With OpenSSL 3.0 they are removing support for SSLv3 that has been deprecated for over one decade while also dropping OpenSSL engines and other removals while also adding in some new features… ⌘ Read more

TikTok Says End-To-End Encryption Makes Users Less Safe
An anonymous reader quotes a report from the BBC: TikTok will not introduce end-to-end encryption (E2EE) – the controversial privacy feature used by nearly all its rivals – arguing it makes users less safe. E2EE means only the sender and recipient of a direct message can view its contents, making it the most secure form of communication available to the general … ⌘ Read more

Telegram Disputes Russia’s Claim Its Encryption Was Compromised
Russia’s domestic intelligence agency claimed Saturday that Ukraine can obtain sensitive information from troops using the Telegram app on the front line, reports Bloomberg. The fact that the claims were made through Russia’s state-operated news outlet RIA Novosti signals “tightening scrutiny over a platform used by millions of Russians,” Bloomberg no … ⌘ Read more

eCryptfs Sees Renewed Patch Activity With Linux 7.0
We haven’t heard much about eCryptfs in recent years for that stackable in-tree Linux file-system providing per-directory encryption support. The FSCRYPT framework has shown its strong capabilities in recent years with various file-systems, Canonical hasn’t been pursuing its user home directory encryption like it did years ago for the Ubuntu desktop, and full disk encryption is the most secure approach for ensuring data security on your system. But to some surprise wi … ⌘ Read more

Evaluating The Performance Cost To AMD SEV-SNP On EPYC 9005 VMs
AMD Secure Encrypted Virtualization with Secure Nested Paging (SEV-SNP) provides memory encryption and integrity protections that can be especially useful in modern cloud computing. Typically a 2~10% performance overhead is reported when engaging AMD SEV-SNP for these hardware-backed security protections. In this article is an extensive look at the current AMD SEV-SNP performance impact for confidential computing on EPYC 9005 “Turin” servers. The curr … ⌘ Read more

Intel Releases QATlib 26.02 With New APIs For Zero-Copy DMA
Of Intel’s different CPU accelerator IPs, the arguably most useful and with the greatest customer interest remains around QuickAssist Technology (QAT). Intel QAT allows offloading various compression and encryption tasks for better performance. Intel this week released QATlib 26.02 as the newest version of their user-space library for leveraging QuickAssist Technology on capable hardware… ⌘ Read more

US Government Also Received a Whistleblower Complaint That WhatsApp Chats Aren’t Private
Remember that lawsuit questioning WhatsApp’s end-to-end encryption? Thursday Bloomberg reported those allegations had been investigated by special agents with America’s Commerce Department, “according to the law enforcement records, as well as a person familiar with the matter and one of the contractor … ⌘ Read more

WhatsApp End-to-End Encryption Allegations Questioned By Some Security Experts, Lawyers
Several security experts have “questioned the lack of technical detail” in that lawsuit alleging WhatsApp has no end-to-end encryption, reports the Washington Post:

“It’s pretty long on accusations and thin on any sort of evidence,” Matthew Green, a cryptography professor at Johns Hopkins University, sa … ⌘ Read more

Libgcrypt 1.12 Released With VAES/AVX-512 Accelerated AES: 2x Performance On AMD Zen 5
Werner Koch released libgcrypt 1.12 as the newest feature release to this library providing the cryptographic building blocks used by GnuPG and other software like email clients, file encryption utilities, and other software… ⌘ Read more

Lawsuit Alleges That WhatsApp Has No End-to-End Encryption
Longtime Slashdot reader schwit1 shares a report from PCMag: A lawsuit claims that WhatsApp’s end-to-end encryption is a sham, and is demanding damages, but the app’s parent company, Meta, calls the claims “false and absurd.” The lawsuit was filed in a San Francisco US district court on Friday and comes from a group of users based in countries such as Australi … ⌘ Read more

Microsoft Gave FBI a Set of BitLocker Encryption Keys To Unlock Suspects’ Laptops
An anonymous reader quotes a report from TechCrunch: Microsoft provided the FBI with the recovery keys to unlock encrypted data on the hard drives of three laptops as part of a federal investigation, Forbes reported on Friday. Many modern Windows computers rely on full-disk encryption, called BitLocker, which is ena … ⌘ Read more

Ireland Wants To Give Its Cops Spyware, Ability To Crack Encrypted Messages
The Irish government is planning to bolster its police’s ability to intercept communications, including encrypted messages, and provide a legal basis for spyware use. From a report: The Communications (Interception and Lawful Access) Bill is being framed as a replacement for the current legislation that governs digital communic … ⌘ Read more

AI Agents ‘Perilous’ for Secure Apps Such as Signal, Whittaker Says
Signal Foundation president Meredith Whittaker warned that AI agents that autonomously carry out tasks pose a threat to encrypted messaging apps [non-paywalled source] because they require broad access to data stored across a device and can be hijacked if given root permissions.

Speaking at Davos on Tuesday, Whittaker said the deeper integrat … ⌘ Read more

Cryptsetup 2.8.2 Released With BitLocker Clear Key Support
Cryptsetup 2.8.2 released on Thursday for this open-source utility used for setting up disk encryption with dm-crypt on Linux systems, including for LUKS volumes, TrueCrypt, BitLocker, and other formats… ⌘ Read more

OpenZFS 2.4 Released With Faster Encryption Performance, Many Other Improvements
OpenZFS 2.4 is out as stable in time for the holidays! The big OpenZFS 2.4 feature release is now available for FreeBSD and Linux systems to continue advancing the open-source ZFS file-system support… ⌘ Read more

Microsoft Will Finally Kill Obsolete Cipher That Has Wrecked Decades of Havoc
An anonymous reader quotes a report from Ars Technica: Microsoft is killing off an obsolete and vulnerable encryption cipher that Windows has supported by default for 26 years following more than a decade of devastating hacks that exploited it and recently faced blistering criticism from a prominent US senator. When the so … ⌘ Read more

Linux 6.19 Features: LUO, PCIe Link Encryption, ASUS Armoury, DRM Color Pipeline API & More
With Linux 6.19-rc1 released, the merge window for Linux 6.19 has now concluded. Here is a summary of the interesting Linux 6.19 new features and changes with this kernel version. ⌘ Read more

Russian Hackers Debut Simple Ransomware Service, But Store Keys In Plain Text
The pro-Russian CyberVolk group resurfaced with a Telegram-based ransomware-as-a-service platform, but fatally undermined its own operation by hardcoding master encryption keys in plaintext. The Register reports: First, the bad news: the CyberVolk 2.x (aka VolkLocker) ransomware-as-a-service operation that launched in late … ⌘ Read more

Linux 6.19 Introduces PCIe Link Encryption & Device Authentication, AMD SEV-TIO Enabling
One of the most exciting merges this weekend to the Linux 6.19 kernel is establishing the infrastructure for supporting PCI Express link encryption and device authentication. Multiple vendors are working on PCIe link encryption for their hardware while this initial pull begins laying the foundation of AMD SEV-TIO Trusted I/O support for the mainline kernel… ⌘ Read more

‘End-To-End Encrypted’ Smart Toilet Camera Is Not Actually End-To-End Encrypted
An anonymous reader quotes a report from TechCrunch: Earlier this year, home goods maker Kohler launched a smart camera called the Dekoda that attaches to your toilet bowl, takes pictures of it, and analyzes the images to advise you on your gut health. Anticipating privacy fears, Kohler said on its website that the Dekod … ⌘ Read more

Signal Private Messenger Rolls Out Secure Backups for iPhone
Encrypted messaging platform Signal now offers secure backups on iPhone, letting users save and restore messages if they lose access to their device.

Image

There are free and paid versions of Signal’s secure backups. The free version lets users store up to 100MB of text messages, including photos, videos, and files from … ⌘ Read more

Thunderbird Pro Enters Production Testing Ahead of $9/Month Launch
Thunderbird Pro has moved its Thundermail email service into production testing as the open-source email client’s subscription bundle of additional services prepares for an Early Bird beta launch at $9 per month that will include email hosting, encrypted file sharing through Send, and scheduling via Appointment.

Internal team members are now tes … ⌘ Read more