Application Security Testing: An Integral Part of DevOps
The Sourceforge project page for Truecrypt now sports a cryptographically signed notice that states “WARNING: Using TrueCrypt is not secure as it may contain unfixed security issues”. The news comes on the heels of a crowdfunded $70K security audit of the open source, anonymously maintained software giving it a relatively positive initial diagnosis. The announcement -- signed by the same key that has been used to sign previous, legitimate updates links Truecrypt's deprecation to Microsoft's decision to cease supporting Windows XP, though no one seems to have a theory about how these two facts relate to one another. Keep reading here.