TrueCrypt – Something very Strange is going on!!!

I don’t know what is going on with TrueCrypt. If you are using TrueCrypt then you should remove it immediately from your computer (do NOT upgrade it either).

Late last week, TrueCrypt’s web site posted a very strange message:

WARNING: Using TrueCrypt is not secure as it may contain unfixed security issues

This page exists only to help migrate existing data encrypted by TrueCrypt.

All of the encryption source code has been removed from SourceForge but the decryption code remains. A source code diff of the two versions has been posted, and the new release appears to simply remove much of what the software was designed to do.

And someone posted the following very interesting comment:

Odd, 6 hours ago someone updated the TruCrypt-key.asc files, then 3 hours later posted all the new binaries. Also odd is whoever posted the new binaries completely yanked all the previous ones, leaving only the new and questionable binary available for download.

Of course, there are a million theories about what is going on:
– NSA has disabled TrueCrypt
– NSA has put in a backdoor to TrueCrypt
– The TrueCrypt team received a National Security Letter (NSL)
– The site has been hacked by the underworld/mob etc.

It really does not matter, about which crazy/wild theory is true, if you are using TrueCrypt, I would stop using it ASAP and switch to another product but whatever you do, do NOT upgrade to the latest release of TrueCrypt.

Finally, I have removed all links related to TrueCrypt from Capitalware’s web site.

Regards,
Roger Lacroix
Capitalware Inc.

This entry was posted in Linux, macOS (Mac OS X), Open Source, Security, Unix, Windows.

Comments are closed.