SecureDrop for Sources

Warning

This source guide below is meant to illustrate the source submission process for journalists and newsrooms, and is not intended to instruct sources how to safely use SecureDrop. If you are potentially interested in sharing information to a news organization via SecureDrop, you should:

  1. Start from a place with public Wi-Fi, like a coffee shop. Use a computer you own and control. Do not use a mobile phone or tablet. Never use a workplace computer or network.

  2. Download, install, and open Tor Browser, then visit howto.securedrop.tor.onion

What is SecureDrop?

SecureDrop is a tool that news organizations and NGOs use that enables secure and anonymous communication between whistleblowers and Journalists. No personal information is collected; information submitted to SecureDrop is encrypted, and SecureDrop is not a “cloud” service. If you don’t have sensitive information to send to a news organization, it may be okay to use a traditional methods such as phone or email when reaching out.

SecureDrop can accept both messages and individual file uploads (up to 500MB). If you have multiple files to submit, you may do that. As a Source, you can also return to receive follow-up correspondence with an organization, or to send additional information. Dozens of news organizations — from ProPublica to The New York Times — use SecureDrop to accept tips securely and anonymously.

To truly protect your anonymity, it is important for you to take some extra precautions in advance. This resource will describe things you can do to help protect your anonymity when using SecureDrop. Note that your Internet Service Provider, or ISP (e.g., Comcast/Xfinity, Cox, Wave, etc), may already have a record of your visit to this website, docs.securedrop.org.