feed.xml

<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>Cryptomator Blog</title><description>Recent Blog Posts on cryptomator.org</description><link>https://staging.cryptomator.org/</link><language>en</language><atom:link href="https://staging.cryptomator.org/feed.xml" rel="self" type="application/rss+xml"/><image><url>https://staging.cryptomator.org/img/logo.png</url><title>Cryptomator Blog</title><link>https://staging.cryptomator.org/</link></image><lastBuildDate>Thu, 11 Jun 2026 08:53:24 +0000</lastBuildDate><generator>Hugo</generator><item><title>World Cup Season: A Data Protection Guide for Travelers and Teams</title><description>&lt;p>&lt;strong>The World Cup kicks off today.&lt;/strong> For many people, that means watching games together, being on the go, traveling, working remotely, or simply taking care of important tasks in between activities. Whether at a hotel, a café, the airport, or the office with colleagues, files are often shared quickly, devices are used more frequently on the go, and sensitive information is stored in the cloud.&lt;/p>
&lt;p>In the process, &lt;strong>data protection and IT security can easily take a back seat&lt;/strong>. A ticket is stored in the cloud, travel documents are saved on a smartphone, project files are shared with colleagues, or important documents are left unencrypted in a cloud folder. It’s certainly convenient. But it’s not automatically secure.&lt;/p>
&lt;p>Whether you are traveling privately, working remotely, or coordinating files in a team, a few &lt;strong>simple steps&lt;/strong> can help keep your data secure during the soccer frenzy. And that’s exactly where &lt;strong>Cryptomator&lt;/strong> and &lt;strong>Cryptomator Hub&lt;/strong> come in.&lt;/p>
&lt;figure class="text-center">
&lt;img class="inline-block rounded-sm" src="https://staging.cryptomator.org/img/blog/worldcup-2026-checklist-dataprotection_en.png" alt="Data protection checklist for the world cup" />
&lt;/figure>
&lt;h2 id="why-the-soccer-season-is-a-good-opportunity-to-improve-data-security">Why the Soccer Season Is a Good Opportunity to Improve Data Security&lt;/h2>
&lt;p>Major sporting events bring people together. At the same time, they often &lt;strong>disrupt our daily digital routines&lt;/strong>: many people travel, work on the go, use public networks, or coordinate with others at short notice. This creates situations in which sensitive data can end up unprotected faster than you might think.&lt;/p>
&lt;p>&lt;strong>Typical examples&lt;/strong> include:&lt;/p>
&lt;ul>
&lt;li>Travel documents, tickets, or booking confirmations stored in the cloud&lt;/li>
&lt;li>Work files on a laptop while traveling&lt;/li>
&lt;li>Shared folders for teams, clubs, or organizations&lt;/li>
&lt;li>Spontaneous file transfers via messaging apps or cloud links&lt;/li>
&lt;li>Public Wi-Fi in hotels, cafes, or train stations&lt;/li>
&lt;li>Personal photos, documents, and notes that are automatically synced&lt;/li>
&lt;/ul>
&lt;p>&lt;strong>Cloud storage&lt;/strong> is convenient, but it is no substitute for encryption. Anyone storing sensitive files in the cloud should ensure that this data is already encrypted before it is uploaded.&lt;/p>
&lt;h2 id="1-store-travel-documents-and-tickets-only-in-encrypted-form">1. Store Travel Documents and Tickets Only in Encrypted Form&lt;/h2>
&lt;p>&lt;strong>The cloud is especially handy when traveling&lt;/strong>. Flight or train tickets, hotel reservations, copies of ID, insurance documents, and event tickets are quickly accessible when stored online. At the same time, these documents often contain very personal information.&lt;/p>
&lt;p>If &lt;strong>such files are stored in the cloud in unencrypted form&lt;/strong>, they aren’t automatically private there. While many cloud providers secure their infrastructure, as a user, you don’t always have full control over who might technically have access to your stored data.&lt;/p>
&lt;p>With &lt;strong>Cryptomator&lt;/strong>, you can encrypt your files before they are uploaded to the cloud. To do this, you create what’s called a &lt;strong>vault&lt;/strong>. Everything you store in this vault is &lt;strong>encrypted locally on your device and then synced with your cloud provider as usual&lt;/strong>.&lt;/p>
&lt;p>This means you can continue to use your preferred cloud service, but &lt;strong>your files will remain unreadable to third parties&lt;/strong>.&lt;/p>
&lt;p>Already have the app but don&amp;rsquo;t know how to create a vault? Then take a look at our &lt;a href="https://docs.cryptomator.org/desktop/getting-started/">documentation&lt;/a>.&lt;/p>
&lt;h2 id="2-use-public-wi-fi-with-caution">2. Use Public Wi-Fi With Caution&lt;/h2>
&lt;p>During soccer season, people often get a lot of work done on the go: quickly sending a file, opening a document, reviewing a presentation, or accessing personal files. &lt;strong>Public Wi-Fi&lt;/strong> in hotels, cafés, trains, or airports is tempting for this, but it isn’t always trustworthy.&lt;/p>
&lt;p>Even though modern websites and apps often use encrypted connections, public networks still pose a risk. This becomes particularly problematic when sensitive files are transmitted without protection or opened on unsecured devices.&lt;/p>
&lt;p>Here are a few basic rules to follow:&lt;/p>
&lt;ul>
&lt;li>Use public Wi-Fi only when absolutely necessary&lt;/li>
&lt;li>Avoid entering sensitive login credentials if you don&amp;rsquo;t trust the network&lt;/li>
&lt;li>Keep your operating system and apps up to date&lt;/li>
&lt;li>Enable two-factor authentication whenever possible&lt;/li>
&lt;li>And above all: Don&amp;rsquo;t store confidential files in the cloud without encrypting them&lt;/li>
&lt;/ul>
&lt;p>&lt;strong>Cryptomator&lt;/strong> protects your files regardless of the network used to sync them. Even when your cloud files are being transferred or stored, they remain encrypted.&lt;/p>
&lt;h2 id="3-plan-ahead-for-device-loss">3. Plan Ahead for Device Loss&lt;/h2>
&lt;p>When traveling or attending events, things can go wrong in the blink of an eye: a smartphone gets left behind, a laptop gets stolen, or a tablet goes missing from a backpack. It’s always frustrating. But it becomes a serious problem &lt;strong>if sensitive files are stored on the device without protection&lt;/strong>.&lt;/p>
&lt;p>That’s why it’s a good idea to check a few things before you start your trip:&lt;/p>
&lt;ul>
&lt;li>&lt;strong>Enable a screen lock&lt;/strong> with a strong password or biometric unlocking&lt;/li>
&lt;li>Set up &lt;strong>device encryption&lt;/strong>&lt;/li>
&lt;li>Use a &lt;strong>password manager&lt;/strong>&lt;/li>
&lt;li>Check whether you can &lt;strong>remotely lock or wipe your devices&lt;/strong> in an emergency&lt;/li>
&lt;li>And only store sensitive documents in &lt;strong>encrypted&lt;/strong> form&lt;/li>
&lt;/ul>
&lt;p>With &lt;strong>Cryptomator&lt;/strong>, you can store personal and work files in encrypted vaults. Even if someone gains access to your cloud storage or synced files, the contents remain protected without your password.&lt;/p>
&lt;h2 id="4-teamwork-requires-more-than-just-shared-folders">4. Teamwork Requires More Than Just Shared Folders&lt;/h2>
&lt;p>It’s not just individuals who benefit from encrypted cloud storage. &lt;strong>Teams, companies, universities, NGOs, and organizations&lt;/strong> also frequently work with sensitive documents. Collaboration often intensifies during major events or seasonal campaigns: marketing materials, press kits, budget plans, travel documents, internal lists, and project files need to be readily available.&lt;/p>
&lt;p>A &lt;strong>shared cloud folder&lt;/strong> alone isn&amp;rsquo;t always enough. When it comes to sensitive data, it&amp;rsquo;s not just about making files available. It&amp;rsquo;s also about effectively controlling access and reliably protecting the content.&lt;/p>
&lt;p>That&amp;rsquo;s where &lt;strong>Cryptomator Hub&lt;/strong> comes in.&lt;/p>
&lt;p>Cryptomator Hub enables organizations to &lt;strong>share encrypted vaults within a team&lt;/strong>. Files remain &lt;strong>encrypted on the client side&lt;/strong>, while &lt;strong>access can be managed centrally&lt;/strong>. This allows teams to collaborate securely without storing sensitive information in the cloud in unencrypted form.&lt;/p>
&lt;p>This is particularly helpful when multiple people need to access confidential files, for example in companies, research institutions, universities, NGOs, or agencies.&lt;/p>
&lt;p>&lt;a href="https://cryptomator.org/hub/managed/">&lt;strong>Try Cryptomator Hub for 30 Days&lt;/strong>&lt;/a>&lt;/p>
&lt;h2 id="5-check-access-rights-regularly">5. Check Access Rights Regularly&lt;/h2>
&lt;p>In many organizations, cloud folders grow over time. People are added, projects change, external partners are granted access, and former team members sometimes retain access longer than they should.&lt;/p>
&lt;p>Soccer offers a good analogy for this: Not everyone belongs in the starting lineup all the time. The same goes for file access—&lt;strong>you should regularly review who actually still needs access&lt;/strong>.&lt;/p>
&lt;p>&lt;strong>For teams, this means&lt;/strong>:&lt;/p>
&lt;ul>
&lt;li>Regularly reviewing access permissions&lt;/li>
&lt;li>Consistently removing former team members&lt;/li>
&lt;li>Limiting the duration of external access&lt;/li>
&lt;li>Not sharing sensitive files via public links&lt;/li>
&lt;li>Clearly defining roles and responsibilities&lt;/li>
&lt;/ul>
&lt;p>With &lt;strong>Cryptomator Hub&lt;/strong>, &lt;strong>access to encrypted vaults can be managed centrally&lt;/strong>. This makes secure collaboration easier without having to sacrifice the benefits of cloud storage.&lt;/p>
&lt;h2 id="6-dont-forget-to-back-up-your-data">6. Don’t Forget to Back Up Your Data&lt;/h2>
&lt;p>Data protection isn’t just about safeguarding files from unauthorized access. It’s also about making sure you don’t lose important data. It’s especially worth creating a &lt;strong>backup&lt;/strong> before trips, events, or busy work periods.&lt;/p>
&lt;p>A &lt;strong>good backup protects you against device loss, accidental deletion, technical issues, or ransomware attacks&lt;/strong>. The key point is this: a backup shouldn’t just exist—it should also be tested regularly.&lt;/p>
&lt;p>For particularly sensitive files, it makes sense to &lt;strong>store backups in an encrypted format&lt;/strong>. With Cryptomator, you can use an encrypted vault for this purpose and sync it with a cloud service of your choice. This way, your files remain accessible but protected.&lt;/p>
&lt;h2 id="7-keep-personal-and-professional-information-separate">7. Keep Personal and Professional Information Separate&lt;/h2>
&lt;p>During a major sporting event, &lt;strong>the lines between personal and professional use can quickly blur&lt;/strong>: personal smartphones are used for work emails, work laptops for travel documents, and team files end up in personal cloud folders.&lt;/p>
&lt;p>This can lead to problems. Keeping personal and professional data clearly separate reduces risks and makes it easier to stay on top of things.&lt;/p>
&lt;p>A &lt;strong>simple structure&lt;/strong> can help:&lt;/p>
&lt;ul>
&lt;li>a vault for personal documents&lt;/li>
&lt;li>a vault for travel documents&lt;/li>
&lt;li>a vault for work files&lt;/li>
&lt;li>a shared vault for team projects via Cryptomator Hub&lt;/li>
&lt;/ul>
&lt;p>This makes it clear which files belong where and who should have access to them.&lt;/p>
&lt;h2 id="8-encryption-should-be-simple">8. Encryption Should Be Simple&lt;/h2>
&lt;p>Many people know that encryption is important. Yet it’s often not used in everyday life because it seems complicated. That’s exactly what Cryptomator aims to change.&lt;/p>
&lt;p>&lt;strong>Cryptomator is designed so you can securely encrypt your files without having to understand cryptography&lt;/strong>. You create a vault, place files inside it, and continue using your cloud as usual. The encryption happens in the background on your device.&lt;/p>
&lt;p>For individuals, this is an easy way to protect private documents, photos, backups, or travel documents. For organizations, &lt;strong>Cryptomator Hub&lt;/strong> also offers the ability to &lt;strong>enable encrypted team collaboration&lt;/strong>.&lt;/p>
&lt;h2 id="conclusion-good-preparation-is-the-best-defense">Conclusion: Good Preparation Is the Best Defense&lt;/h2>
&lt;p>&lt;strong>Whether on the soccer field or in IT security, a strong defense doesn’t start only when an emergency arises&lt;/strong>. If you want to protect your data, you should consider in advance where sensitive information is stored, who has access to it, and how it’s secured.&lt;/p>
&lt;p>Soccer season is a good time &lt;strong>to review your own digital security&lt;/strong>. Not because you have to sacrifice convenience, but because &lt;strong>security and ease of use can go hand in hand&lt;/strong>.&lt;/p>
&lt;p>With &lt;strong>Cryptomator&lt;/strong>, you can encrypt your files before they go to the cloud. With Cryptomator Hub, teams and organizations can securely collaborate on encrypted data.&lt;/p>
&lt;p>This way, your files stay protected whether you’re on the go, working in a team, or using the cloud every day.&lt;/p>
&lt;p>Ready for a strong digital defense? Protect your files now with Cryptomator — and secure team collaboration with Cryptomator Hub.&lt;/p>
&lt;p>&lt;a href="https://cryptomator.org/contact-sales/">&lt;strong>Request a demo now&lt;/strong>&lt;/a>&lt;/p></description><pubDate>Thu, 11 Jun 2026 00:00:00 +0000</pubDate><link>https://staging.cryptomator.org/blog/2026/06/11/world-cup-season-a-data-protection-guide/</link><guid isPermaLink="true">https://staging.cryptomator.org/blog/2026/06/11/world-cup-season-a-data-protection-guide/</guid><category>cryptomator</category><category>cryptomator hub</category><category>worldcup2026</category></item><item><title>Cybercrime in 2025: What Businesses Can Learn from Germany's BKA Report</title><description>&lt;p>&lt;strong>Cyberattacks are no longer the exception&lt;/strong>. They have become part of the everyday threat landscape for businesses, organizations, and public institutions. This is also evident in the latest report from &lt;strong>Germany&amp;rsquo;s Federal Criminal Police Office (Bundeskriminalamt, or BKA)&lt;/strong>, its &amp;ldquo;&lt;a href="https://www.bka.de/SharedDocs/Downloads/DE/Publikationen/JahresberichteUndLagebilder/Cybercrime/cybercrimeBundeslagebild2025.html?nn=28110">&lt;strong>Federal Cybercrime Situation Report 2025&lt;/strong>&lt;/a>.&amp;rdquo; While the report focuses on Germany, the trends it describes are playing out internationally: cybercrime is becoming more professional, scalable, and potentially more damaging for those affected. &lt;strong>Ransomware, data extortion, phishing&lt;/strong>, and the misuse of artificial intelligence are particularly defining the current landscape.&lt;/p>
&lt;p>This raises a key question for &lt;strong>companies&lt;/strong>: &lt;strong>How can sensitive data be protected&lt;/strong> when attacks are increasingly targeting not just systems, but the information itself?&lt;/p>
&lt;figure class="text-center">
&lt;img class="inline-block rounded-sm" src="https://staging.cryptomator.org/img/blog/cybercrime-report-2025.png" alt="Cybercrime in 2025: What Businesses Can Learn from Germany's BKA Report" />
&lt;/figure>
&lt;h2 id="cybercrime-remains-at-high-levels">Cybercrime Remains at High Levels&lt;/h2>
&lt;p>The Federal Situation Report shows that cybercrime continues to pose a significant threat in Germany. For the year 2025, the Federal Criminal Police Office (BKA) reports &lt;strong>a total of 333,922 cybercrime cases&lt;/strong> when domestic and foreign offenses are considered together. It is particularly noteworthy that &lt;strong>foreign offenses, at 207,888 cases,&lt;/strong> significantly outnumber domestic offenses. This illustrates the extent to which cyberattacks are organized across borders and how difficult it can be to prosecute them under criminal law.&lt;/p>
&lt;p>The &lt;strong>economic damage is also enormous&lt;/strong>. According to the Bitkom survey cited in the report, &lt;strong>cyberattacks caused damage to the German economy amounting to approximately 202.4 billion euros&lt;/strong>. This means that cyberattacks account for a significant portion of the total losses incurred by companies due to theft, espionage, and sabotage.&lt;/p>
&lt;p>These figures show that &lt;strong>cybersecurity is not just an IT issue&lt;/strong>. It affects the entire organization—from management and the IT department to specialized departments that work with sensitive data on a daily basis.&lt;/p>
&lt;h2 id="ransomware-remains-a-major-threat">Ransomware Remains a Major Threat&lt;/h2>
&lt;p>&lt;strong>Ransomware remains one of the greatest threats&lt;/strong>. The BKA continues to describe attacks involving encryption trojans as a major threat to businesses and public institutions. &lt;strong>In 2025, 1,041 ransomware attacks were reported across Germany&lt;/strong>—an increase of about ten percent compared to the previous year.&lt;/p>
&lt;p>It is particularly striking that the majority of these attacks target organizations: According to the report, around &lt;strong>96 percent of ransomware attacks targeted companies, organizations, and institutions.&lt;/strong> About &lt;strong>90 percent were directed at small and medium-sized enterprises&lt;/strong>.&lt;/p>
&lt;p>This is an important point. Cybercriminals do not only attack large corporations with massive IT budgets. Small and medium-sized organizations, in particular, are increasingly being targeted because they often possess valuable data but do not always have the resources for complex security architectures.&lt;/p>
&lt;p>&lt;strong>Typical examples&lt;/strong> include:&lt;/p>
&lt;ul>
&lt;li>Customer data&lt;/li>
&lt;li>Contract documents&lt;/li>
&lt;li>Financial data&lt;/li>
&lt;li>Research data&lt;/li>
&lt;li>Personnel files&lt;/li>
&lt;li>Internal strategy and project documents&lt;/li>
&lt;li>Sensitive data from clients, patients, members, or partner organizations&lt;/li>
&lt;/ul>
&lt;p>Such information is particularly valuable to attackers. And that is precisely why it is no longer enough to simply secure systems. &lt;strong>The data itself must also be protected&lt;/strong>.&lt;/p>
&lt;h2 id="from-ransomware-to-double-extortion">From Ransomware to Double Extortion&lt;/h2>
&lt;p>In the past, ransomware primarily focused on encrypting systems. Attackers blocked access to files and demanded a ransom for their restoration. Today, this model has become significantly more dangerous.&lt;/p>
&lt;p>The BKA points out that &lt;strong>a large proportion of ransomware attacks can be attributed to the &amp;ldquo;double extortion&amp;rdquo; modus operandi&lt;/strong>. In this scenario, attackers not only encrypt systems but also copy data from the affected environment beforehand. They then threaten to publish or sell this information.&lt;/p>
&lt;p>For companies, this shifts the risk. It is no longer just a matter of whether data can be restored from a backup. It is also a matter of whether sensitive information has already been leaked—and whether attackers can read, analyze, and use it against the organization.&lt;/p>
&lt;p>&lt;strong>Backups remain important, of course.&lt;/strong> They help restore operations after an attack. But they &lt;strong>do not solve the problem of data exfiltration&lt;/strong>. If confidential data has been copied in unencrypted form, a backup cannot prevent reputational damage, legal risks, or potential data breaches.&lt;/p>
&lt;p>This is precisely &lt;strong>where data-level encryption becomes crucial&lt;/strong>.&lt;/p>
&lt;h2 id="data-extortion-is-on-the-rise">Data Extortion Is on the Rise&lt;/h2>
&lt;p>The report makes it clear that, alongside traditional ransomware, another modus operandi is taking hold: &lt;strong>data extortion&lt;/strong>. In some cases, attackers even forego encrypting systems and &lt;strong>instead focus directly on extracting sensitive data&lt;/strong> and then blackmailing victims by threatening to publish it.&lt;/p>
&lt;p>This is a significant development. It shows that cybercriminals are targeting the area where the pressure on companies is greatest: confidential information.&lt;/p>
&lt;p>If &lt;strong>sensitive data&lt;/strong> falls into the wrong hands, the threat is not limited to short-term business disruptions. Companies must also &lt;strong>expect long-term consequences&lt;/strong>:&lt;/p>
&lt;ul>
&lt;li>Loss of customer trust&lt;/li>
&lt;li>Damage to reputation&lt;/li>
&lt;li>Data breach notifications and potential fines&lt;/li>
&lt;li>Legal disputes&lt;/li>
&lt;li>Disclosure of internal information&lt;/li>
&lt;li>Endangerment of partners, employees, or affected individuals&lt;/li>
&lt;li>Blackmail through threats of further disclosures&lt;/li>
&lt;/ul>
&lt;p>&lt;strong>The more sensitive the data, the greater the pressure.&lt;/strong> For NGOs, universities, research institutions, works councils, law firms, consulting firms, healthcare organizations, or social service providers, such a data breach can be particularly severe.&lt;/p>
&lt;h2 id="ai-makes-attacks-faster-and-more-convincing">AI Makes Attacks Faster and More Convincing&lt;/h2>
&lt;p>Another key focus of the Federal Situation Report is &lt;strong>the use of artificial intelligence&lt;/strong>. The BKA notes that &lt;strong>AI lowers the technical barriers to entry for cybercrime&lt;/strong> and &lt;strong>can make attacks more efficient, faster, and more credible.&lt;/strong>&lt;/p>
&lt;p>This is particularly evident in &lt;strong>phishing&lt;/strong>. AI can help create &lt;strong>deceptively authentic emails&lt;/strong>: linguistically flawless, well-translated, personalized, and written in the style of well-known companies or internal communications. This makes phishing attacks harder to detect.&lt;/p>
&lt;p>But the report goes even further. &lt;strong>AI can also assist in the strategic reconnaissance of target systems, the identification of vulnerabilities, and the analysis of large amounts of data.&lt;/strong> In the context of ransomware, this can mean that attackers can more quickly identify which files are particularly sensitive, confidential, or business-critical.&lt;/p>
&lt;p>This changes the defense landscape. Organizations must assume that, in the future, attackers will not only be able to steal more data but also analyze it more quickly and use it in a more targeted manner for extortion.&lt;/p>
&lt;h2 id="why-cloud-data-requires-special-protection">Why Cloud Data Requires Special Protection&lt;/h2>
&lt;p>Many companies and organizations now &lt;strong>operate in the cloud&lt;/strong>. Files are stored in cloud storage, shared among teams, and edited from various locations. This is efficient and has become indispensable for modern collaboration.&lt;/p>
&lt;p>At the same time, new risks are emerging. The more sensitive data is stored in cloud environments, the more important the following question becomes:&lt;/p>
&lt;p>&lt;strong>Who can access this data&lt;/strong>—and in what form is it stored there?&lt;/p>
&lt;p>Account security, multi-factor authentication, and role-based permissions are important protective measures. But they should not be the only lines of defense. Phishing, compromised credentials, misconfigurations, or unauthorized access can all lead to attackers gaining access to cloud files.&lt;/p>
&lt;p>If this data is stored in plain text, it is immediately usable. If, on the other hand, it has been &lt;strong>encrypted on the client side&lt;/strong>, an additional layer of protection is created. Attackers cannot then easily read the files, even if they gain access to the storage location.&lt;/p>
&lt;h2 id="what-role-cryptomator-hub-can-play-in-this">What Role Cryptomator Hub Can Play in This&lt;/h2>
&lt;p>This is exactly where &lt;strong>Cryptomator Hub&lt;/strong> comes in. The solution &lt;strong>helps teams and organizations store sensitive data in the cloud in an encrypted format and manage access centrally.&lt;/strong>&lt;/p>
&lt;p>It&amp;rsquo;s important to understand the distinction: Cryptomator Hub is not anti-ransomware software, a virus scanner, or DDoS protection. In other words, the solution does not prevent attackers from sending phishing emails, developing malware, or attacking infrastructure.&lt;/p>
&lt;p>The added value lies on a different level: &lt;strong>Cryptomator Hub protects data where it is most at risk&lt;/strong>—in day-to-day collaboration, in cloud storage, and in shared work environments.&lt;/p>
&lt;p>This is particularly relevant in &lt;strong>four scenarios&lt;/strong>:&lt;/p>
&lt;p>&lt;strong>1. Protection Against Exploitable Data Leaks&lt;/strong>&lt;/p>
&lt;p>When attackers attempt to copy data from cloud storage, encryption determines whether that data is readable to them. &lt;strong>Client-side encryption&lt;/strong> ensures that files are encrypted before they are stored in the cloud.&lt;/p>
&lt;p>This is a crucial factor in &lt;strong>data extortion&lt;/strong>. Stolen data is only valuable for blackmail if it can be analyzed and published.&lt;/p>
&lt;p>&lt;strong>2. Access Control for Teams&lt;/strong>&lt;/p>
&lt;p>In organizations, data must be shared—but not all data with everyone. Cryptomator Hub &lt;strong>enables structured management of access rights&lt;/strong> for teams. This allows for better control over who has access to specific vaults and sensitive information.&lt;/p>
&lt;p>This is particularly important for organizations with multiple departments, project teams, or external stakeholders.&lt;/p>
&lt;p>&lt;strong>3. Complementing Existing Security Measures&lt;/strong>&lt;/p>
&lt;p>Cryptomator Hub does not replace a comprehensive security strategy. It complements it. A &lt;strong>robust cybersecurity strategy should combine multiple layers:&lt;/strong>&lt;/p>
&lt;ul>
&lt;li>Awareness and training&lt;/li>
&lt;li>Phishing protection&lt;/li>
&lt;li>Strong passwords and multi-factor authentication&lt;/li>
&lt;li>Endpoint security&lt;/li>
&lt;li>Regular updates&lt;/li>
&lt;li>Backups&lt;/li>
&lt;li>Permissions and role management&lt;/li>
&lt;li>Incident response&lt;/li>
&lt;li>Encryption of sensitive data&lt;/li>
&lt;/ul>
&lt;p>In this model, Cryptomator Hub primarily &lt;strong>strengthens the data confidentiality layer&lt;/strong>.&lt;/p>
&lt;p>&lt;strong>4. Practical Solution for Smaller Organizations&lt;/strong>&lt;/p>
&lt;p>Since the report indicates that &lt;strong>SMEs in particular are heavily affected by ransomware&lt;/strong>, practical implementability is a key factor. Not every organization can build complex enterprise security infrastructures. At the same time, smaller teams must also protect sensitive data.&lt;/p>
&lt;p>Cryptomator Hub can be positioned here as a &lt;strong>low-threshold, team-friendly solution&lt;/strong>: Cloud data remains accessible but is protected by additional encryption.&lt;/p>
&lt;p>➡️ &lt;a href="https://staging.cryptomator.org/hub/managed/">Try Cryptomator Hub for 30 days&lt;/a>!&lt;/p>
&lt;h2 id="conclusion-cybersecurity-must-start-with-the-data">Conclusion: Cybersecurity Must Start With the Data&lt;/h2>
&lt;p>The &lt;a href="https://www.bka.de/SharedDocs/Downloads/DE/Publikationen/JahresberichteUndLagebilder/Cybercrime/cybercrimeBundeslagebild2025.html?nn=28110">&lt;strong>2025 Federal Cybercrime Situation Report&lt;/strong>&lt;/a> makes it clear that companies should no longer view cyberattacks solely as a technical risk. The key question is no longer simply whether an attack can be repelled. It is also crucial to consider &lt;strong>how capable an organization remains of functioning if an attack is successful.&lt;/strong>&lt;/p>
&lt;p>This is precisely where the perspective on data security is shifting. When attackers copy, analyze, and use sensitive information as leverage, the confidentiality of this data becomes a central component of an organization&amp;rsquo;s own resilience. Those who store confidential information unprotected in cloud environments rely on all upstream protection mechanisms functioning at all times. However, the current threat landscape shows that this assumption is risky.&lt;/p>
&lt;p>&lt;strong>Companies therefore need security strategies that not only prevent attacks but also limit their consequences.&lt;/strong> This includes consistently protecting sensitive data in such a way that it cannot be immediately exploited in the event of an emergency. Encryption is not an additional measure for particularly cautious organizations, but a fundamental building block of modern cyber resilience.&lt;/p>
&lt;p>&lt;strong>This is exactly where Cryptomator Hub comes in&lt;/strong>: The solution helps teams encrypt sensitive cloud data on the client side and manage access centrally. While it doesn&amp;rsquo;t protect against every form of cyberattack, it strengthens a crucial line of defense—the data itself.&lt;/p>
&lt;p>After all, the more cybercrime focuses on the theft and publication of sensitive information, &lt;strong>the more important a simple fact becomes: Data that attackers cannot read loses a large part of its potential for blackmail.&lt;/strong>&lt;/p>
&lt;p>➡️ &lt;a href="https://staging.cryptomator.org/contact-sales/">Request a demo&lt;/a>!&lt;/p></description><pubDate>Wed, 10 Jun 2026 00:00:00 +0000</pubDate><link>https://staging.cryptomator.org/blog/2026/06/10/cybercrime-report-2025/</link><guid isPermaLink="true">https://staging.cryptomator.org/blog/2026/06/10/cybercrime-report-2025/</guid><category>cryptomator</category><category>hub</category><category>cybercrime</category></item><item><title>World Password Day 2026: Why Strong Passwords Are No Longer Enough</title><description>&lt;p>For years, &lt;strong>World Password Day&lt;/strong> has promoted a simple message: use strong passwords, don’t reuse them, use a password manager, and enable two-factor authentication and passkeys whenever possible.&lt;/p>
&lt;p>These recommendations are still sound. At the same time, it is becoming increasingly clear that they are no longer sufficient to meet the needs of many organizations. The conversation has shifted: it’s no longer just about making passwords better. &lt;strong>Increasingly, the focus is on how to reduce reliance on passwords overall.&lt;/strong>&lt;/p>
&lt;p>This is particularly relevant for companies and teams. Here, passwords are &lt;strong>not just an individual security risk&lt;/strong>, but an organizational factor. They must be managed, reset, protected, and, in a team context, frequently integrated into existing processes.&lt;/p>
&lt;h2 id="why-passwords-have-their-limitations-in-practice">Why Passwords Have Their Limitations in Practice&lt;/h2>
&lt;p>Passwords have been the standard for digital access for decades. The fundamental problem, however, lies not only in weak or reused passwords, but in the principle itself: &lt;strong>a password is a secret that can be discovered, shared, or stolen.&lt;/strong>&lt;/p>
&lt;p>In organizations, there is the added complication that access cannot be viewed in isolation. As soon as multiple people are involved with the same data, projects, or processes, additional administrative overhead and new vulnerabilities arise: &lt;strong>shared vault passwords in notes or phishing emails&lt;/strong> that compromise a single password and thereby expose entire data sets.&lt;/p>
&lt;p>Stricter password rules alone do not solve this problem and have long since ceased to be recommended. What is needed is a security model that fits modern collaboration—one that ties access not primarily to shared secrets, but to verifiable identities and clear permissions.&lt;/p>
&lt;h2 id="the-unique-challenge-of-confidential-cloud-collaboration">The Unique Challenge of Confidential Cloud Collaboration&lt;/h2>
&lt;p>Many teams today work with &lt;strong>sensitive data in cloud environments&lt;/strong>: contracts, personnel records, customer data, internal strategy documents, and research data. This information must be accessible during day-to-day operations—while at the same time remaining reliably protected against unauthorized access.&lt;/p>
&lt;p>This &lt;strong>creates a dilemma&lt;/strong>: Authorized users must be able to access the data easily. However, security must not depend on passwords being manually distributed, kept up to date, or laboriously adjusted whenever personnel changes occur. This is precisely where it becomes clear that &lt;strong>password security alone is no longer sufficient&lt;/strong>. What matters is how access is organized and controlled overall, and whether the data ends up in plain text with a cloud provider or on a network drive in the first place.&lt;/p>
&lt;h2 id="what-role-cryptomator-hub-plays-in-this">What Role Cryptomator Hub Plays in This&lt;/h2>
&lt;p>&lt;strong>Cryptomator Hub addresses this issue by providing a structured framework for encrypted collaboration among teams.&lt;/strong> The focus is on encrypted vaults and identity-based access rights rather than shared passwords and access permissions. Cryptomator Hub consistently follows the &lt;strong>zero-knowledge principle&lt;/strong>: content is encrypted and decrypted exclusively on users’ devices; the Hub server itself never has access to the plaintext data or the underlying keys.&lt;/p>
&lt;p>With Cryptomator Hub, &lt;strong>team vaults&lt;/strong> are provisioned, and it is determined which users or groups are permitted to access them. Access is not controlled via a shared vault password, but through the organization’s existing identity management system. Common identity providers such as &lt;strong>Keycloak&lt;/strong> or &lt;strong>Microsoft Entra ID&lt;/strong> can be integrated via &lt;strong>OpenID Connect&lt;/strong>. This shifts the focus from “Who knows the password?” to &lt;strong>“Who has access and under what permissions?”&lt;/strong>&lt;/p>
&lt;p>For teams, this is a significant difference. Permissions are managed in the IdP and are therefore auditable. When someone leaves the team, the offboarding process in the IdP automatically revokes access—&lt;strong>eliminating the need for manual distribution, documentation, or rotation of vault passwords.&lt;/strong>&lt;/p>
&lt;h2 id="also-suitable-for-small-teams-without-their-own-it-department">Also Suitable for Small Teams Without Their Own It Department&lt;/h2>
&lt;p>Not every organization has an IT department—and not every team wants to deal with terms like OpenID Connect or Identity Provider. A &lt;strong>dental practice, a law firm, or a small consulting firm&lt;/strong> works with highly sensitive data, but usually doesn’t have anyone on staff who would set up a complex security infrastructure.&lt;/p>
&lt;p>Cryptomator Hub is designed for such teams as well. No separate identity management system is required: &lt;strong>Hub comes with preconfigured user management&lt;/strong>, allowing users to be created directly, groups to be formed, and vaults to be assigned. This is done via a &lt;strong>web interface, without a command line and without any prior knowledge&lt;/strong> of identity or key management.&lt;/p>
&lt;p>In practice, this means: Colleagues are invited and assigned the appropriate vaults. From that moment on, all authorized users can access shared patient records, client data, or project documents in an encrypted manner—&lt;strong>via the cloud that is already in use&lt;/strong>. If someone leaves the team, their account can be deactivated in the Hub interface, and access is revoked. There is no shared password that anyone could still know afterward. &lt;strong>This is because everyone has their own password&lt;/strong>, including multi-factor authentication (MFA) or a passkey.&lt;/p>
&lt;p>&lt;strong>It’s important to note&lt;/strong> that even in this simple setup, the zero-knowledge principle applies without exception. Even if user management is handled through the included Hub component, the content remains unreadable to cloud providers, Hub operators, and Skymatic alike.&lt;/p>
&lt;p>This makes Cryptomator Hub ideal for e.g., &lt;strong>medical practices and small offices that take their GDPR obligations seriously&lt;/strong> but lack both the budget and the time for a large-scale IT project.&lt;/p>
&lt;p>➡️ &lt;a href="https://cryptomator.org/de/hub/managed/">Try Cryptomator Hub for 30 days&lt;/a>!&lt;/p>
&lt;h2 id="transparency-instead-of-blind-trust">Transparency Instead of Blind Trust&lt;/h2>
&lt;p>Security requires verifiability. &lt;strong>Cryptomator is open source&lt;/strong>: the code is publicly available on &lt;a href="https://github.com/cryptomator">GitHub&lt;/a> and has undergone independent security audits. This means that IT managers don’t have to rely on marketing promises; instead, they can verify the cryptographic implementation themselves—or have it verified. &lt;strong>Cryptomator Hub is built on the same open-source foundation&lt;/strong>. This means that the zero-knowledge promise is not merely a marketing claim, but an architectural feature that can be verified in the code.&lt;/p>
&lt;p>Furthermore, Cryptomator Hub is developed in Bonn, Germany. The architecture has been designed from the outset to meet &lt;strong>European data protection requirements&lt;/strong>. Since content is encrypted on the end device, unencrypted personal data never leaves the organization’s sphere of responsibility.&lt;/p>
&lt;p>Security solutions are only effective if they can be integrated into real-world workflows. If security measures become too complicated in everyday use, workarounds and manual bypasses will emerge.&lt;/p>
&lt;h2 id="beyond-world-password-day">Beyond World Password Day&lt;/h2>
&lt;p>&lt;strong>World Password Day&lt;/strong> is a good opportunity to think about secure access. For organizations, however, the discussion shouldn’t stop at password policies. After all, when multiple people are working with sensitive data, &lt;strong>security becomes a matter of access control, management processes, and technical architecture.&lt;/strong>&lt;/p>
&lt;p>&lt;strong>Strong passwords remain important, but they are no longer sufficient for modern teams.&lt;/strong> In addition to secure login credentials, authorization management, identity-based authentication, and a robust encryption concept are essential—ideally one that operates on the zero-knowledge principle and does not make confidentiality dependent on the cloud provider’s good faith.&lt;/p>
&lt;p>This is exactly where Cryptomator Hub comes in: &lt;strong>zero-knowledge encryption on end devices, combined with identity-based access control&lt;/strong>—open source and developed in Germany. If your team processes sensitive data in existing cloud services and is looking for a security model that doesn’t weaken with every shared password, it’s worth taking a closer look at Cryptomator Hub.&lt;/p>
&lt;p>➡️ &lt;a href="https://cryptomator.org/contact-sales/">Request a demo&lt;/a>!&lt;/p></description><pubDate>Thu, 07 May 2026 00:00:00 +0000</pubDate><link>https://staging.cryptomator.org/blog/2026/05/07/world-password-day-2026/</link><guid isPermaLink="true">https://staging.cryptomator.org/blog/2026/05/07/world-password-day-2026/</guid><category>cryptomator</category><category>hub</category><category>world password day</category></item><item><title>Security Vulnerability in Hub Vault Unlock: Update Required</title><description>&lt;p>We have released an important security fix for all Cryptomator client apps, which fixes a vulnerability affecting all users who unlock Hub-managed vaults.&lt;/p>
&lt;h2 id="required-action">Required Action&lt;/h2>
&lt;p>Please update all your Cryptomator client applications that access Hub-managed vaults immediately to the fixed versions:&lt;/p>
&lt;ul>
&lt;li>&lt;a href="https://github.com/cryptomator/cryptomator/releases/tag/1.19.1">Cryptomator 1.19.1 for Desktop&lt;/a>&lt;/li>
&lt;li>&lt;a href="https://github.com/cryptomator/android/releases/tag/1.12.3">Cryptomator 1.12.3 for Android&lt;/a>&lt;/li>
&lt;li>&lt;a href="https://github.com/cryptomator/ios/releases/tag/2.8.3">Cryptomator 2.8.3 for iOS&lt;/a>&lt;/li>
&lt;/ul>
&lt;p>You can also find all downloads on our &lt;a href="https://staging.cryptomator.org/downloads/">downloads page&lt;/a>.&lt;/p>
&lt;p>After the update, Cryptomator clients connecting to self-hosted Hub instances will show a one-time &amp;ldquo;Trust this host?&amp;rdquo; dialog that must be confirmed individually. Before accepting, please verify that the displayed Hub URL is correct and matches your Cryptomator Hub instance. Clients connecting to Cryptomator Hub Managed are not affected by this dialog, as managed domains are trusted automatically.&lt;/p>
&lt;figure class="text-center">
&lt;img class="inline-block rounded-sm max-h-[302px]" src="https://staging.cryptomator.org/img/blog/vault-unlock-tofu.png" alt="Trust this host? dialog showing a Hub URL that needs to be verified" />
&lt;/figure>
&lt;h2 id="are-my-vaults-safe">Are my vaults safe?&lt;/h2>
&lt;p>Yes. Since Cryptomator Hub uses end-to-end encryption, vault data was never in danger.&lt;/p>
&lt;h2 id="which-vaults-are-affected">Which vaults are affected?&lt;/h2>
&lt;p>The vulnerability lies within the unlock workflow of Hub-managed vaults. Local vaults are unaffected.&lt;/p>
&lt;h2 id="what-data-is-at-risk">What data is at risk?&lt;/h2>
&lt;p>An attacker with write access to your encrypted data could tamper the vault in a way that makes Cryptomator send a session token to a malicious server. The exfiltrated token can then be used to impersonate a user to access unencrypted information like usernames, vault names, etc. in Hub.&lt;/p>
&lt;h2 id="has-this-been-exploited">Has this been exploited?&lt;/h2>
&lt;p>At this time, we have no evidence of active exploitation of this vulnerability.&lt;/p>
&lt;h2 id="security-advisories">Security Advisories&lt;/h2>
&lt;p>As part of responsible disclosure, the full security advisories will be published on March 20. Until then, the following links will not work yet — this is expected and intentional:&lt;/p>
&lt;ul>
&lt;li>Desktop: &lt;a href="https://github.com/cryptomator/cryptomator/security/advisories/GHSA-34rf-rwr3-7g43">CVE-2026-32303&lt;/a>&lt;/li>
&lt;li>Android: &lt;a href="https://github.com/cryptomator/android/security/advisories/GHSA-876q-q3mm-fcvj">CVE-2026-32317&lt;/a>&lt;/li>
&lt;li>iOS: &lt;a href="https://github.com/cryptomator/ios/security/advisories/GHSA-g7fr-c82r-hm6j">CVE-2026-32318&lt;/a>&lt;/li>
&lt;/ul>
&lt;h2 id="how-can-i-get-help">How can I get help?&lt;/h2>
&lt;p>If you have any further questions or need assistance during updates, don&amp;rsquo;t hesitate to contact us at &lt;a href="mailto:hub-support@cryptomator.org">hub-support@cryptomator.org&lt;/a>.&lt;/p></description><pubDate>Fri, 13 Mar 2026 00:00:00 +0000</pubDate><link>https://staging.cryptomator.org/blog/2026/03/13/hub-vault-unlock-vulnerability/</link><guid isPermaLink="true">https://staging.cryptomator.org/blog/2026/03/13/hub-vault-unlock-vulnerability/</guid><category>cryptomator</category><category>hub</category><category>vulnerability</category></item><item><title>Anniversary Survey – Tell Us What You Want Next</title><description>&lt;p>As part of our &lt;a href="https://staging.cryptomator.org/blog/2026/03/09/10-years-cryptomator/">10-year anniversary&lt;/a>, we&amp;rsquo;d love to hear directly from you.&lt;/p>
&lt;figure class="text-center">
&lt;img class="inline-block rounded-sm" src="https://staging.cryptomator.org/img/blog/10-years-sweepstake.png" alt="Anniversary Survey – Tell Us What You Want Next" />
&lt;/figure>
&lt;h2 id="take-the-survey">Take the Survey&lt;/h2>
&lt;p>We&amp;rsquo;ve put together a short survey to learn what you like, what you miss, and how you use Cryptomator in your daily life. Your feedback helps us prioritize improvements and new features that truly matter to the community.&lt;/p>
&lt;p>As a small thank-you, &lt;strong>everyone who completes the survey can enter our sweepstake to win one of ten Cryptomator goodie bags&lt;/strong>, each including a T-shirt, a mug, a tote bag, and a sticker! Participate until March 18th, 2026 to win!&lt;/p>
&lt;p>➡️ &lt;a href="https://forms.skymatic.de/s/uuw0hgwfnxuzui137nptu3nf">Take the survey here&lt;/a>!&lt;/p>
&lt;p>The survey only takes a few minutes — and every response makes a difference.&lt;/p>
&lt;h2 id="anniversary-sale">Anniversary Sale&lt;/h2>
&lt;p>To celebrate our 10-year anniversary, we&amp;rsquo;re also running a &lt;strong>special sale until March 18th&lt;/strong>! Get Cryptomator at a reduced price and support the future of open-source encryption. Head over to our &lt;a href="https://staging.cryptomator.org/downloads/">downloads page&lt;/a> to grab the deal before it&amp;rsquo;s gone.&lt;/p>
&lt;p>Thanks for being part of the Cryptomator community and for helping shape what comes next!&lt;/p></description><pubDate>Fri, 13 Mar 2026 00:00:00 +0000</pubDate><link>https://staging.cryptomator.org/blog/2026/03/13/10-years-anniversary-survey/</link><guid isPermaLink="true">https://staging.cryptomator.org/blog/2026/03/13/10-years-anniversary-survey/</guid><category>cryptomator</category><category>anniversary</category></item><item><title>10 Years of Cryptomator – Thank You All</title><description>&lt;h2 id="today-cryptomator-turns-10">Today, Cryptomator Turns 10&lt;/h2>
&lt;p>It feels surreal to read this sentence.&lt;/p>
&lt;p>What once began as a small idea has become &lt;strong>a tool trusted by millions of people worldwide&lt;/strong>. People from very different backgrounds and walks of life: journalists protecting their sources. NGOs securing sensitive information. Researchers, students, freelancers, companies—&lt;strong>all united by a common need&lt;/strong>: to keep their data private in an increasingly connected world.&lt;/p>
&lt;p>Today, we are not only celebrating an anniversary. We are looking back on the history of Cryptomator, saying thank you to all our supporters, and looking ahead to what the future holds for the Cryptomator project.&lt;/p>
&lt;figure class="text-center">
&lt;img class="inline-block rounded-sm" src="https://staging.cryptomator.org/img/blog/10-years-cryptomator.png" alt="10 Years of Cryptomator – Thank You All" />
&lt;/figure>
&lt;h2 id="how-it-all-began">How It All Began&lt;/h2>
&lt;p>About ten years ago, &lt;strong>cloud storage&lt;/strong> became part of everyday life. Dropbox, Google Drive, OneDrive, and many others promised convenience: anytime access to files, easy sharing, seamless collaboration. And they delivered exactly that—but at a hidden price: the surrender of your privacy – the analysis of uploaded data.&lt;/p>
&lt;p>The only protection against this was encryption. But &lt;strong>encryption was either non-existent, optional, or so complicated&lt;/strong> that it was not a realistic option for many people. Using the cloud often meant &lt;strong>relinquishing control over your own data&lt;/strong>, often without really noticing.&lt;/p>
&lt;p>Cryptomator was born out of this very tension.&lt;/p>
&lt;blockquote>
&lt;p>“As is often the case with FOSS, it all started with my own needs, because existing tools did not meet my requirements. My motivation then changed significantly when it became apparent that others also had this need for a transparent, cloud-compatible encryption solution and were also dissatisfied with the existing tools (at that time, mainly Boxcryptor).”&lt;/p>
&lt;p>— Sebastian Stenzel, CTO&lt;/p>&lt;/blockquote>
&lt;p>From the outset, Cryptomator was developed as &lt;strong>open-source software&lt;/strong>. Transparency was not a marketing promise, but a prerequisite. Anyone could understand how the encryption worked, check for vulnerabilities, and contribute improvements.&lt;/p>
&lt;blockquote>
&lt;p>&amp;ldquo;At the beginning, open source was actually our most important unique selling point compared to our main competitor Boxcryptor – I simply didn&amp;rsquo;t want to trust blindly. In theory, open source means that you don&amp;rsquo;t have to trust us at all. And new processes such as provenance attestation—i.e., cryptographic evidence of how a build was created—can also ensure the integrity of software that has already been compiled by the manufacturer in the future.&amp;rdquo;&lt;/p>
&lt;p>— Sebastian Stenzel, CTO&lt;/p>&lt;/blockquote>
&lt;h2 id="grown-with-the-cloud">Grown With the Cloud&lt;/h2>
&lt;p>But time does not stand still. Over the past ten years, the world of work has changed fundamentally. &lt;strong>Remote work&lt;/strong> has become the norm since the COVID-19 pandemic. &lt;strong>International collaboration&lt;/strong> is now a matter of course. Entire organizations have &lt;strong>moved their processes to the cloud&lt;/strong>. At the same time, the risks have also grown: data leaks, ransomware, surveillance, increasing regulatory requirements.&lt;/p>
&lt;blockquote>
&lt;p>&amp;ldquo;Privacy has (unfortunately) become increasingly important: In the past, the main concerns were cybercrime and leaks – today, I am worried about the spread of authoritarian tendencies in so-called ‘democracies’. The demanded erosion of privacy can, in the wrong hands, become a means of control over us all; AI troll armies with access to private chats and data would be the most powerful propaganda tool in human history. If we allow this to happen, it will have serious consequences.&amp;rdquo;&lt;/p>
&lt;p>— Sebastian Stenzel, CTO&lt;/p>&lt;/blockquote>
&lt;p>&lt;strong>Privacy is no longer a “nice-to-have.”&lt;/strong> It is a necessity. Cryptomator has evolved to meet these challenges.&lt;/p>
&lt;p>A &lt;strong>desktop application&lt;/strong> became a &lt;strong>cross-platform solution&lt;/strong>. Mobile apps were added. New use cases emerged. Feedback from the community has significantly shaped usability, performance, and features.&lt;/p>
&lt;p>&lt;strong>Cryptomator Hub&lt;/strong> was the next step: secure collaboration for teams and organizations—without compromising on encryption or control.&lt;/p>
&lt;p>Throughout all these developments, one thing has remained the same: &lt;strong>security and user-friendliness should not be mutually exclusive.&lt;/strong>&lt;/p>
&lt;p>Below, we have compiled a &lt;strong>timeline&lt;/strong> showing the most important milestones of recent years.&lt;/p>
&lt;h2 id="timeline">Timeline&lt;/h2>
&lt;figure class="text-center">
&lt;img class="inline-block rounded-sm" src="https://staging.cryptomator.org/img/blog/10-years-evolution-of-an-icon.png" alt="Evolution of the Cryptomator icon from the early 'washing machine' design to today's Cryptobot" />
&lt;figcaption>Evolution of an Icon: From the "Washing Machine" to the Cryptobot&lt;/figcaption>
&lt;/figure>
&lt;p>&lt;strong>2013–2014 – The idea is born, development begins&lt;/strong>&lt;br>
The vision arises from a very practical need: to be able to use the cloud without entrusting plain text data to the provider. Active development begins in 2014, with a focus on local encryption and ease of use.&lt;/p>
&lt;p>&lt;strong>2015 – First releases &amp;amp; initial recognition&lt;/strong>&lt;br>
Cryptomator takes shape: early GitHub releases create a stable foundation. The &lt;strong>CeBIT Innovation Award (Usable Security &amp;amp; Privacy)&lt;/strong> gives the approach an early boost: security doesn&amp;rsquo;t have to be complicated.&lt;/p>
&lt;p>&lt;strong>March 9, 2016 – Cryptomator 1.0: the official launch&lt;/strong>&lt;br>
&lt;strong>Cryptomator 1.0&lt;/strong> is the first stable desktop version. Interest is so great that the website is temporarily overloaded on release day – an early sign of how great the demand for independent cloud encryption is.&lt;/p>
&lt;p>&lt;strong>2017 – Growth in the ecosystem: integration, community, Android&lt;/strong>&lt;br>
Cryptomator becomes more visible and suitable for everyday use: integration with &lt;strong>Cyberduck&lt;/strong> brings the project closer to existing workflows. The &lt;strong>community forum&lt;/strong> creates a central location for support and exchange. And with &lt;strong>Android 1.0&lt;/strong>, mobile encryption finally becomes suitable for the masses.&lt;/p>
&lt;p>&lt;strong>2018 – Sustainability: the sponsor program&lt;/strong>&lt;br>
To ensure that Cryptomator can continue to be developed in the long term, a &lt;strong>sponsor program&lt;/strong> is launched. It strengthens financing and enables open source to be operated professionally on a permanent basis – without abandoning the core values of the project.&lt;/p>
&lt;p>&lt;strong>2020 – A milestone: 1 million downloads &amp;amp; a big leap for desktop&lt;/strong>&lt;br>
Cryptomator reaches &lt;strong>1 million downloads&lt;/strong>. At the same time, a major update (including a new UI and vault format) marks the next level of maturity. At the end of the year, the &lt;strong>Android app&lt;/strong> also becomes completely &lt;strong>open source&lt;/strong> – a logical step towards transparency.&lt;/p>
&lt;p>&lt;strong>2021–2023 – More open source, more teams: iOS &amp;amp; Cryptomator Hub&lt;/strong>&lt;br>
The iOS app becomes open source and undergoes a fundamental technical overhaul with &lt;strong>Cryptomator 2.0.&lt;/strong> At the same time, demand from companies and organizations grows: &lt;strong>Cryptomator Hub 1.0 (2022)&lt;/strong> adds a solution for teams and institutions – including central administration and team vaults. Hub will be further expanded in subsequent versions (e.g., recovery keys).&lt;/p>
&lt;p>&lt;strong>2024–2025 – Reach &amp;amp; future viability&lt;/strong>
Cryptomator reaches new target groups through greater media presence and recommendations. At the same time, the focus is clearly on the future: The &lt;strong>post-quantum roadmap&lt;/strong> prepares for the long-term cryptographic future, and integrations (e.g., &lt;strong>Mountain Duck&lt;/strong>) strengthen the ecosystem around encrypted cloud workflows.&lt;/p>
&lt;h2 id="whats-next--new-updates--features">What’s Next? – New Updates &amp;amp; Features&lt;/h2>
&lt;h3 id="new-cryptomator-hub-features--early-access--anniversary-launch">New Cryptomator Hub Features – Early Access / Anniversary Launch&lt;/h3>
&lt;p>As part of its 10th anniversary, &lt;strong>several key enhancements for Cryptomator Hub are entering early access&lt;/strong> or being made publicly available for the first time. These are designed to give teams and organizations more control, security, and flexibility. To celebrate, we&amp;rsquo;re offering a special &lt;strong>100-day free trial&lt;/strong> (instead of the usual 30 days) for &lt;a href="https://staging.cryptomator.org/hub/managed/">Cryptomator Hub Managed&lt;/a>. For more details, check out the &lt;a href="https://docs.cryptomator.org/hub/early-access/">Early Access documentation&lt;/a>.&lt;/p>
&lt;p>&lt;strong>User &amp;amp; Group Management&lt;/strong>&lt;/p>
&lt;p>A key highlight of the new Hub version is &lt;strong>User &amp;amp; Group Management&lt;/strong>.&lt;br>
This allows administrators to:&lt;/p>
&lt;ul>
&lt;li>Manage users in a targeted manner&lt;/li>
&lt;li>Create groups and assign roles&lt;/li>
&lt;li>Assign rights in a more structured and granular way&lt;/li>
&lt;/ul>
&lt;p>This enables &lt;strong>better control over access within teams and organizations&lt;/strong>, which is particularly important for larger groups or departments. This feature marks an important step from simple access control to true team and organizational role management.&lt;/p>
&lt;figure class="text-center">
&lt;img class="inline-block rounded-sm" src="https://staging.cryptomator.org/img/blog/hub-anniversary-2025-user-management-preview.png" alt="Cryptomator Hub – User/Group Management Preview" />
&lt;/figure>
&lt;p>&lt;strong>Emergency Access&lt;/strong>&lt;/p>
&lt;p>Another big step: &lt;strong>Emergency Access&lt;/strong> is being introduced.&lt;br>
This allows you to:&lt;/p>
&lt;ul>
&lt;li>Create security accounts for emergencies&lt;/li>
&lt;li>Define trusted persons/administrators&lt;/li>
&lt;li>Enable access in case of lost access data or keys&lt;/li>
&lt;/ul>
&lt;p>This &lt;strong>improves reliability, especially in organizational contexts&lt;/strong>, and ensures that no data access is lost, even if individuals are no longer available.&lt;/p>
&lt;figure class="text-center">
&lt;img class="inline-block rounded-sm" src="https://staging.cryptomator.org/img/blog/hub-anniversary-2025-emergency-access-preview.png" alt="Cryptomator Hub – Emergency Access Preview" />
&lt;/figure>
&lt;h3 id="cryptomator-desktop-and-ios">Cryptomator Desktop and iOS&lt;/h3>
&lt;p>&lt;strong>Files in Use&lt;/strong>&lt;/p>
&lt;p>The desktop application also has a new feature in &lt;strong>update 1.19.0&lt;/strong> that is important for Hub vaults: &lt;strong>“Files in Use.”&lt;/strong>&lt;/p>
&lt;p>If a file is open in a Hub vault on one device, other users are notified when they open it on their devices.&lt;/p>
&lt;p>This is particularly important for reducing conflicts or data loss when files are being edited simultaneously and improves collaboration in teams.&lt;/p>
&lt;p>&lt;strong>New Cryptomator logo for iOS (desktop &amp;amp; mobile)&lt;/strong>&lt;/p>
&lt;p>To mark its anniversary, Cryptomator is also getting a minor visual update: &lt;strong>A new Cryptomator logo is appearing on iOS&lt;/strong>—both in the &lt;strong>mobile app&lt;/strong> and in the &lt;strong>desktop application&lt;/strong>.&lt;/p>
&lt;figure class="text-center">
&lt;img class="inline-block rounded-sm" src="https://staging.cryptomator.org/img/blog/10-years-new-app-icons.png" alt="New Cryptomator app icons for macOS and iOS" />
&lt;figcaption>New Cryptomator App Icons for macOS and iOS&lt;/figcaption>
&lt;/figure>
&lt;h2 id="voices-from-the-community">Voices From the Community&lt;/h2>
&lt;blockquote>
&lt;p>“Nowadays, I&amp;rsquo;m especially happy when I come across users in the wild or read reports.”&lt;br>
— Sebastian Stenzel, CTO&lt;/p>&lt;/blockquote>
&lt;p>Over the past 10 years, Cryptomator has become much more than just an encryption tool. For many people today, it is &lt;strong>an integral part of their daily work&lt;/strong> and security concept. Cryptomator gives you peace of mind when it comes to protecting your data. Here are some comments from our community:&lt;/p>
&lt;blockquote>
&lt;p>“I just wanted to say thank you for this great tool!”&lt;br>
— Luke (@nuk3, Mastodon)&lt;/p>&lt;/blockquote>
&lt;blockquote>
&lt;p>“This is why I love Cryptomator: the files are encrypted, and even if the cloud provider has a data leak, I know my files are safe.”&lt;br>
— mbeddedDev (Mastodon)&lt;/p>&lt;/blockquote>
&lt;blockquote>
&lt;p>Again, Cryptomator is free to use. So if you can support the program, you should definitely do so. It&amp;rsquo;s a great piece of software.&lt;br>
— Techlore (YouTube)&lt;/p>&lt;/blockquote>
&lt;p>For many users, it&amp;rsquo;s the &lt;strong>combination of transparency and user-friendliness&lt;/strong> that makes the difference:&lt;/p>
&lt;blockquote>
&lt;p>“Open source and widely used, tested and stable, with a beautiful and simple interface. It&amp;rsquo;s always my first general recommendation for cloud storage.”&lt;br>
— Fit_Flower_8982 (Reddit)&lt;/p>&lt;/blockquote>
&lt;p>Organizations and companies also rely on our encryption solution, especially &lt;strong>Cryptomator Hub&lt;/strong>:&lt;/p>
&lt;blockquote>
&lt;p>“With Cryptomator Hub, we can securely manage sensitive company data while making it easy for our employees to use.”&lt;br>
— Andreas Cofalla, Application Manager IT, Walbusch GmbH &amp;amp; Co. KG&lt;/p>&lt;/blockquote>
&lt;p>And for many users, Cryptomator has become part of their &lt;strong>everyday lives&lt;/strong>:&lt;/p>
&lt;blockquote>
&lt;p>“I sleep peacefully at night knowing that my files are private and secure, no matter where they are stored or backed up.”&lt;br>
— @paired_electron (X)&lt;/p>&lt;/blockquote>
&lt;blockquote>
&lt;p>“Everything works effortlessly on my iPad&amp;hellip; biometric login or password directly on the same screen is a great solution.”&lt;br>
— Jack Ouzzi (App Store)&lt;/p>&lt;/blockquote>
&lt;p>Whether on desktop or smartphone, privately or in business, the trust, feedback, and support of our community have made Cryptomator what it is today. Thanks a lot for that!&lt;/p>
&lt;h2 id="10-years-of-cryptomator--join-our-live-ama">10 Years of Cryptomator – Join Our Live AMA&lt;/h2>
&lt;figure class="text-center">
&lt;img class="inline-block rounded-sm" src="https://staging.cryptomator.org/img/blog/10-years-ama.png" alt="Join our 10-Year Anniversary AMA on Reddit" />
&lt;/figure>
&lt;p>As part of our 10th anniversary celebration, we are hosting an &lt;strong>Ask Me Anything (AMA) on Reddit!&lt;/strong> We would love for you to join us.&lt;/p>
&lt;p>📅 March 9, 2026&lt;br>
🕓 4:00 p.m. CET&lt;br>
📍 &lt;a href="https://www.reddit.com/r/Cryptomator/comments/1rjt0yh/join_our_10year_anniversary_ama_with_the/">r/Cryptomator&lt;/a>&lt;/p>
&lt;p>&lt;strong>Tobias Hagemann&lt;/strong> (CEO) and &lt;strong>Sebastian Stenzel&lt;/strong> (CTO) will answer your questions live.&lt;/p>
&lt;p>After ten years of working on privacy-friendly open-source encryption software, we are convinced that transparency and open exchange are more important than ever.&lt;/p>
&lt;p>This AMA is our way of saying thank you and looking ahead together with you.&lt;/p>
&lt;p>Follow us on Reddit and join the discussion on r/Cryptomator.&lt;/p>
&lt;p>&lt;strong>We look forward to your questions.&lt;/strong>&lt;/p>
&lt;p>Can&amp;rsquo;t join us live? Don&amp;rsquo;t worry, &lt;strong>we&amp;rsquo;ll make the questions and answers available afterwards&lt;/strong>, and of course, we&amp;rsquo;re always available via email, social media, or the community forum if you still have a burning question.&lt;/p>
&lt;h2 id="special-anniversary-sale">Special Anniversary Sale&lt;/h2>
&lt;figure class="text-center">
&lt;img class="inline-block rounded-sm" src="https://staging.cryptomator.org/img/blog/10-years-sale.png" alt="10-Year Anniversary Sale" />
&lt;/figure>
&lt;p>Ten years of Cryptomator would not have been possible without you. To mark this anniversary, we would like to &lt;strong>express our gratitude with a special thank you&lt;/strong>:&lt;/p>
&lt;p>From &lt;strong>March 9 through March 18&lt;/strong>, our &lt;strong>mobile apps&lt;/strong> (iOS &amp;amp; Android) and the &lt;strong>Supporter Certificate&lt;/strong> will be available for only &lt;strong>€10&lt;/strong>*.&lt;/p>
&lt;p>Whether you&amp;rsquo;ve been using Cryptomator since the early days or have only recently discovered it, now is the perfect time to support the project and secure your cloud on the go with client-side encryption.&lt;/p>
&lt;p>&lt;em>*Note: The discount and price may vary depending on your region.&lt;/em>&lt;/p>
&lt;h2 id="heres-to-the-next-ten-years-of-cryptomator">Here’s to the Next Ten Years of Cryptomator&lt;/h2>
&lt;p>What began as an idea over ten years ago has now become a globally used solution for secure cloud encryption. Millions of people use Cryptomator to protect their data—privately, in organizations, and in companies.&lt;/p>
&lt;p>But Cryptomator is &lt;strong>more than just software&lt;/strong>. It is an open-source project, a community, and a shared belief: &lt;strong>privacy is not optional, but the standard&lt;/strong>.&lt;/p>
&lt;p>None of this would have been possible without you—without your support, your contributions, your feedback, and your enthusiasm for secure and transparent software.&lt;/p>
&lt;p>As we look back on the past ten years, we are also looking ahead. New features, new ideas, and new developments are already waiting in the wings.&lt;/p>
&lt;p>One thing remains unchanged: &lt;strong>our goal to make cloud storage more secure&lt;/strong>—and give people back control over their data.&lt;/p>
&lt;p>&lt;strong>Thank you for being part of this amazing journey.&lt;/strong>&lt;/p></description><pubDate>Mon, 09 Mar 2026 00:00:00 +0000</pubDate><link>https://staging.cryptomator.org/blog/2026/03/09/10-years-cryptomator/</link><guid isPermaLink="true">https://staging.cryptomator.org/blog/2026/03/09/10-years-cryptomator/</guid><category>cryptomator</category><category>anniversary</category></item><item><title>BitLocker, the FBI, and the Illusion of Control</title><description>&lt;p>When it recently became known that &lt;strong>Microsoft had helped the FBI decrypt BitLocker-encrypted data carriers&lt;/strong>, there was widespread outrage. People were quick to talk about “backdoors,” broken encryption, and how BitLocker was clearly unreliable. But as is so often the case, the real problem lies less in the technology itself than in &lt;strong>who has control over the encryption key&lt;/strong>.&lt;/p>
&lt;p>This case is a good opportunity to take a closer look: What really happened? Why was access possible? And what does this say about &lt;strong>our understanding of encryption and cloud services&lt;/strong>?&lt;/p>
&lt;figure class="text-center">
&lt;img class="inline-block rounded-sm" src="https://staging.cryptomator.org/img/blog/microsoft-bitlocker.png" alt="BitLocker, the FBI, and the Illusion of Control" />
&lt;/figure>
&lt;h2 id="what-happened">What Happened?&lt;/h2>
&lt;p>The case that came to light involved a &lt;strong>criminal investigation&lt;/strong> in which the FBI seized several laptops. These devices were encrypted with &lt;strong>BitLocker&lt;/strong>, the &lt;strong>hard disk encryption feature integrated into Windows&lt;/strong>.&lt;/p>
&lt;p>The FBI was still able to decrypt the data &lt;strong>because Microsoft was able to provide the corresponding recovery keys&lt;/strong>. These keys were &lt;strong>stored in the Microsoft account of the person&lt;/strong> concerned. Microsoft was legally obliged to disclose this information by court order.&lt;/p>
&lt;p>It is important to clarify one thing: &lt;strong>Microsoft did not “crack” BitLocker&lt;/strong>. There was no security breach, no secret master key, and no technical backdoor into the encryption itself. &lt;strong>Microsoft was able to help because they had the keys.&lt;/strong>&lt;/p>
&lt;h2 id="bitlocker-is-securebut-not-automatically-private">Bitlocker Is Secure—But Not Automatically Private&lt;/h2>
&lt;p>BitLocker is technically considered a &lt;strong>robust encryption solution&lt;/strong>. The data on a device cannot be read without the appropriate key. The problem does not arise with encryption, but with &lt;strong>key management&lt;/strong>.&lt;/p>
&lt;p>By default, &lt;strong>Windows offers to save the BitLocker recovery key in your Microsoft account&lt;/strong>. This is convenient because if you forget your password or change your hardware, you can simply retrieve the key online.&lt;/p>
&lt;p>However, &lt;strong>this convenience has a consequence&lt;/strong>: if Microsoft holds the key, Microsoft also has the ability to pass it on—for example, to law enforcement agencies with the appropriate warrant.&lt;/p>
&lt;p>Encryption therefore only fully protects data from third parties if the key remains exclusively under the control of the user.&lt;/p>
&lt;h2 id="the-real-misunderstanding-encryption--key-control">The Real Misunderstanding: Encryption ≠ Key Control&lt;/h2>
&lt;p>Many users equate encryption with complete control. In practice, however, this is often not the case.&lt;/p>
&lt;p>A rough distinction can be made between:&lt;/p>
&lt;ul>
&lt;li>&lt;strong>Client-side encryption with external key management&lt;/strong>. This means that the provider has access to the key.&lt;/li>
&lt;li>&lt;strong>Zero-knowledge encryption&lt;/strong>. Here, the provider has no technical access to the key.&lt;/li>
&lt;/ul>
&lt;p>BitLocker with a cloud-backed recovery key clearly falls into the first category. The &lt;strong>data is encrypted, but not exclusively for the owner.&lt;/strong>&lt;/p>
&lt;p>&lt;strong>The Microsoft case therefore does not demonstrate a failure of BitLocker&lt;/strong>, but rather a &lt;strong>structural problem with modern cloud ecosystems&lt;/strong>. Convenience features often undermine data sovereignty without anyone noticing.&lt;/p>
&lt;h2 id="why-many-are-surprised">Why Many Are Surprised&lt;/h2>
&lt;p>The strong reaction to this case shows one thing above all else: &lt;strong>many people do not know where their encryption keys are stored.&lt;/strong>&lt;/p>
&lt;p>Cloud backups, automatic synchronization, and preset security options are standard today. They lower the barrier to entry, increase user-friendliness, and quietly shift responsibility from the user to the provider.&lt;/p>
&lt;p>This leads to a misleading assumption:&lt;/p>
&lt;blockquote>
&lt;p>&lt;em>“My data is encrypted, so no one can access it.”&lt;/em>&lt;/p>&lt;/blockquote>
&lt;p>Technically correct would be:&lt;/p>
&lt;blockquote>
&lt;p>&lt;em>“My data is encrypted, but someone else has the spare key.”&lt;/em>&lt;/p>&lt;/blockquote>
&lt;h2 id="access-by-authorities-is-not-a-special-case">Access by Authorities Is Not a Special Case&lt;/h2>
&lt;p>Another important point: &lt;strong>Access by authorities is not an unusual scenario.&lt;/strong>&lt;/p>
&lt;p>If providers have access to keys or unencrypted data, they are &lt;strong>legally obliged&lt;/strong> in many countries to hand them over if ordered to do so. &lt;strong>This applies not only to Microsoft, but also to other major cloud providers.&lt;/strong>&lt;/p>
&lt;p>The crucial question is therefore not:&lt;/p>
&lt;blockquote>
&lt;p>&lt;em>“Do I trust Microsoft?”&lt;/em>&lt;/p>&lt;/blockquote>
&lt;p>But rather:&lt;/p>
&lt;blockquote>
&lt;p>&lt;em>“Do I want to give a provider the technical ability to decrypt my data?”&lt;/em>&lt;/p>&lt;/blockquote>
&lt;h2 id="what-users-can-learn-from-this">What Users Can Learn From This&lt;/h2>
&lt;p>&lt;strong>The case offers a valuable lesson&lt;/strong> – regardless of the specific product:&lt;/p>
&lt;ul>
&lt;li>Encryption is only as strong as key management&lt;/li>
&lt;li>Cloud backups of keys always mean a loss of control&lt;/li>
&lt;li>Security is not a default setting, but a conscious decision&lt;/li>
&lt;li>If you want maximum privacy, you also have to take responsibility for keys&lt;/li>
&lt;/ul>
&lt;p>&lt;strong>This does not mean that cloud services are fundamentally insecure&lt;/strong>. But it does mean that you should understand which security model you are using and what compromises it entails.&lt;/p>
&lt;h2 id="how-cryptomator-helps-in-such-cases-zero-knowledge-instead-of-key-storage">How Cryptomator Helps in Such Cases: Zero Knowledge Instead of Key Storage&lt;/h2>
&lt;p>This is precisely where solutions such as &lt;strong>Cryptomator and Cryptomator Hub&lt;/strong> come in. Unlike many integrated encryption functions, Cryptomator consistently follows a &lt;strong>zero-knowledge principle&lt;/strong>.&lt;/p>
&lt;p>This means that &lt;strong>data is encrypted locally on the device&lt;/strong> before it can even be uploaded to the cloud. The key difference lies in key management. &lt;strong>Cryptomator does not store passwords, recovery keys, or master keys.&lt;/strong>&lt;/p>
&lt;p>Neither cloud providers nor Cryptomator itself have technical access to the encrypted content or the keys required to decrypt it. Even if a cloud service—such as Microsoft OneDrive, Google Drive, or Dropbox—were required to disclose data, &lt;strong>it would only contain unreadable, encrypted files&lt;/strong>.&lt;/p>
&lt;p>The &lt;strong>difference is particularly clear&lt;/strong> in the context of the BitLocker case:&lt;/p>
&lt;ul>
&lt;li>With BitLocker and a cloud-backed recovery key, the provider can issue the key&lt;/li>
&lt;li>With Cryptomator, this key only exists with the user themselves&lt;/li>
&lt;li>Access by third parties is technically impossible, not just organizationally&lt;/li>
&lt;/ul>
&lt;p>This &lt;strong>deliberately shifts responsibility back to the users&lt;/strong>. It requires a little &lt;strong>more personal responsibility&lt;/strong>—for example, when it comes to handling passwords securely—but in return &lt;strong>offers a significantly higher degree of control and privacy.&lt;/strong>&lt;/p>
&lt;p>This model is particularly important for sensitive data of any kind. You can&amp;rsquo;t pass on something you don&amp;rsquo;t own yourself.&lt;/p>
&lt;h2 id="conclusion-encryption-is-not-a-feature-but-a-responsibility">Conclusion: Encryption Is Not a Feature, but a Responsibility&lt;/h2>
&lt;p>The BitLocker-FBI case &lt;strong>does not reveal a secret backdoor or a breach of modern cryptography&lt;/strong>. It reveals something much more fundamental: how easily we trade control for convenience – often without even realizing it.&lt;/p>
&lt;p>True data sovereignty does not come from encryption alone, but from exclusive control over the keys. Anyone who relinquishes this control should at least be aware of what that means.&lt;/p>
&lt;p>Or to put it another way: &lt;strong>Do you know who has your encryption key?&lt;/strong>&lt;/p></description><pubDate>Sun, 15 Feb 2026 00:00:00 +0000</pubDate><link>https://staging.cryptomator.org/blog/2026/02/15/bitlocker-fbi-and-the-illusion-of-control/</link><guid isPermaLink="true">https://staging.cryptomator.org/blog/2026/02/15/bitlocker-fbi-and-the-illusion-of-control/</guid><category>cryptomator</category><category>microsoft</category><category>bitlocker</category></item><item><title>Digital Independence Day: Why Digital Independence Is Important</title><description>&lt;p>&lt;strong>Every first Sunday of the month&lt;/strong> this year, people around the world take a moment to reflect on their digital habits. The occasion is &lt;strong>Digital Independence Day&lt;/strong> — a day of action for digital self-determination, privacy, and independence from tech monopolies.&lt;/p>
&lt;p>But what does &lt;strong>digital independence&lt;/strong> actually mean? And more importantly: How can you take your first steps without completely changing your digital everyday life or investing a lot of time and energy?&lt;/p>
&lt;figure class="text-center">
&lt;img class="inline-block rounded-sm" src="https://staging.cryptomator.org/img/blog/digital-independence-day-2026.png" alt="Digital Independence Day 2026" />
&lt;/figure>
&lt;h2 id="what-is-digital-independence-day">What Is Digital Independence Day?&lt;/h2>
&lt;p>Digital Independence Day is an initiative that encourages people to &lt;strong>reduce their dependence on large, centralized tech platforms&lt;/strong> — especially those whose business models are based on data collection, lock-in effects, and a lack of transparency.&lt;/p>
&lt;p>Instead of calling for radical change, the movement deliberately focuses on &lt;strong>small, practical steps&lt;/strong> that are accessible to everyone.&lt;/p>
&lt;p>On the &lt;strong>official &lt;a href="https://di.day/">Digital Independence Day&lt;/a> website&lt;/strong>, you’ll find ideas, tools, and easy guides to help you get started right away — from communication and social media to cloud storage and online services.&lt;/p>
&lt;p>At its core, Digital Independence Day stands for:&lt;/p>
&lt;ul>
&lt;li>&lt;strong>less dependence&lt;/strong> on tech monopolies&lt;/li>
&lt;li>&lt;strong>more control&lt;/strong> over your own data&lt;/li>
&lt;li>&lt;strong>conscious use&lt;/strong> of privacy-friendly alternatives&lt;/li>
&lt;/ul>
&lt;h2 id="why-digital-independence-matters">Why Digital Independence Matters&lt;/h2>
&lt;p>Today, much of our digital lives takes place on just a few platforms. They store our documents, organize our communication, and influence which information we see.&lt;/p>
&lt;p>This &lt;strong>concentration of power&lt;/strong> has consequences:&lt;/p>
&lt;ul>
&lt;li>loss of data sovereignty&lt;/li>
&lt;li>opaque data usage and profiling&lt;/li>
&lt;li>limited freedom of choice&lt;/li>
&lt;li>political and economic dependencies&lt;/li>
&lt;/ul>
&lt;p>Digital independence &lt;strong>does not mean rejecting technology&lt;/strong>. It means &lt;strong>regaining agency&lt;/strong> and using tools that respect users, promote openness, and enable real control over data.&lt;/p>
&lt;h2 id="digital-independence-doesnt-have-to-be-complicated">Digital Independence Doesn’t Have to Be Complicated&lt;/h2>
&lt;p>There is a common assumption that digital independence requires technical expertise or hours of research. In reality, many impactful steps can be taken &lt;strong>in just a few minutes&lt;/strong>.&lt;/p>
&lt;p>Here are a few examples inspired by Digital Independence Day:&lt;/p>
&lt;p>&lt;strong>1. Try decentralized social networks&lt;/strong>&lt;/p>
&lt;p>Instead of relying on a centralized platform like Facebook or X, you can try decentralized networks such as &lt;strong>Mastodon&lt;/strong>. Mastodon works similarly to traditional social networks, but it is not controlled by a single company. You can choose a provider, switch if needed, and still stay connected to the entire network.&lt;/p>
&lt;p>The official &lt;a href="https://di.day/category/rezepte/">Digital Independence Day&lt;/a> website offers easy starting points and explanations.&lt;/p>
&lt;p>&lt;strong>2. Be more conscious about cloud storage&lt;/strong>&lt;/p>
&lt;p>Cloud services are convenient, but they often mean that &lt;strong>unencrypted data is stored with third-party providers&lt;/strong>. A simple first step toward digital independence is &lt;strong>client-side encryption&lt;/strong>: your files are encrypted before they leave your device. This is exactly where &lt;strong>Cryptomator&lt;/strong> comes in.&lt;/p>
&lt;p>With Cryptomator, you can continue using your existing cloud provider &lt;strong>while staying in control of your data&lt;/strong>. The provider stores only encrypted files — the keys remain with you. No provider switch. No complicated setup. But significantly more control.&lt;/p>
&lt;p>&lt;strong>3. Replace one tool at a time&lt;/strong>&lt;/p>
&lt;p>You don’t have to change everything at once. Instead, start by &lt;strong>focusing on one area&lt;/strong>:&lt;/p>
&lt;ul>
&lt;li>messaging&lt;/li>
&lt;li>cloud storage&lt;/li>
&lt;li>social media&lt;/li>
&lt;li>password management&lt;/li>
&lt;/ul>
&lt;p>Replace just one tool with a more &lt;strong>privacy-friendly alternative&lt;/strong>. That alone is already a meaningful step. &lt;strong>Digital independence is a process&lt;/strong> — not a to-do list. That’s why Digital Independence Day focuses on small actions that anyone can easily take in everyday life.&lt;/p>
&lt;h2 id="why-we-support-digital-independence-day">Why We Support Digital Independence Day&lt;/h2>
&lt;p>At Cryptomator, we believe that &lt;strong>privacy and control should not be a luxury&lt;/strong>. They should be the standard and accessible to everyone. Digital Independence Day aligns perfectly with this belief. It empowers people to make informed decisions without pressure and without fear-mongering.&lt;/p>
&lt;p>That’s why we support the initiative and invite our community to take part — not just for one day, but continuously.&lt;/p>
&lt;h2 id="digital-independence-day-special--february-edition">Digital Independence Day Special — February Edition&lt;/h2>
&lt;p>To support your first (or next) step toward digital independence, we’re continuing our campaign: On the &lt;strong>first Sunday of February&lt;/strong>, we’re giving away &lt;strong>100 Cryptomator voucher codes — for free&lt;/strong>.&lt;/p>
&lt;p>The codes will be shared on our social media channels and are available on a &lt;strong>first come, first served&lt;/strong> basis.&lt;/p>
&lt;p>Our goal: to lower the barrier to entry and make digital self-determination accessible to as many people as possible.&lt;/p>
&lt;h2 id="your-next-step">Your Next Step&lt;/h2>
&lt;p>Digital independence doesn’t require perfection. It starts with awareness and grows with every conscious decision. If you’re looking for inspiration, practical guides, and simple alternatives: &lt;strong>Visit the &lt;a href="https://di.day/">official Digital Independence Day website&lt;/a>.&lt;/strong>&lt;/p>
&lt;p>And if you want to take control of your cloud data today: &lt;strong>Encrypt your files with Cryptomator before they go to the cloud.&lt;/strong>&lt;/p></description><pubDate>Sun, 01 Feb 2026 00:00:00 +0000</pubDate><link>https://staging.cryptomator.org/blog/2026/02/01/digital-independence-day-2026/</link><guid isPermaLink="true">https://staging.cryptomator.org/blog/2026/02/01/digital-independence-day-2026/</guid><category>cryptomator</category><category>did</category></item><item><title>Winter Is Coming: 50% off Cryptomator</title><description>&lt;p>Winter is Coming — and this time it brings not only cold, but also data security at half the price! From December 1 to 31, 2025, our Winter Sale is live, giving you &lt;strong>50% off*&lt;/strong> Cryptomator.&lt;/p>
&lt;p>That means: only &lt;strong>€9.99 instead of €19.99&lt;/strong> — and as a &lt;strong>one-time purchase&lt;/strong>, not a subscription, with no monthly fees.&lt;/p>
&lt;p>&lt;a href="https://cryptomator.org/for-teams/">&lt;strong>Cryptomator Hub&lt;/strong>&lt;/a> is also available at a &lt;strong>50% discount&lt;/strong> for the first year! Contact us for more detailed terms and conditions or take a look at our &lt;a href="https://cryptomator.org/de/pricing/#for-teams">&lt;strong>price list&lt;/strong>&lt;/a>.&lt;/p>
&lt;figure class="text-center">
&lt;a href="https://staging.cryptomator.org/pricing/" target="_blank" rel="noopener">
&lt;img class="inline-block rounded-sm" src="https://staging.cryptomator.org/img/blog/winter-2025-sale.png" alt="Cryptomator Winter Sale 50% Off" />
&lt;/a>
&lt;/figure>
&lt;h2 id="pay-once-stay-protected-forever">Pay Once, Stay Protected Forever&lt;/h2>
&lt;p>At Cryptomator, we strongly believe that privacy &lt;strong>shouldn’t require a subscription&lt;/strong>.&lt;br>
While many apps rely on monthly or yearly fees, Cryptomator stays true to its &lt;strong>one-time purchase&lt;/strong> model.&lt;/p>
&lt;p>Once purchased, you can use Cryptomator indefinitely — &lt;strong>with no recurring costs or hidden charges&lt;/strong>. Your data stays protected, free from subscription traps.&lt;/p>
&lt;h2 id="price-change-coming-in-2026">Price Change Coming in 2026&lt;/h2>
&lt;p>Starting &lt;strong>January 1, 2026&lt;/strong>, the price of Cryptomator will increase to &lt;strong>€29.99&lt;/strong>.&lt;br>
This ensures long-term investment in &lt;strong>security standards, performance, and new features&lt;/strong> that will continue to protect you reliably in the future.&lt;/p>
&lt;p>So if you&amp;rsquo;ve been thinking about getting Cryptomator, &lt;strong>now is the perfect time&lt;/strong>. Secure not only the 50% discount but also the &lt;strong>old price&lt;/strong> before winter ends.&lt;/p>
&lt;h2 id="get-protected-before-the-year-ends">Get Protected Before the Year Ends&lt;/h2>
&lt;p>&lt;em>&lt;strong>“Winter is Coming”&lt;/strong>&lt;/em> — but your data can be prepared. Use December to secure your digital information and benefit from our biggest discount of the year.&lt;/p>
&lt;p>After December 31, the Winter Sale ends — and the price goes up. &lt;strong>Buy now and stay protected for good.&lt;/strong>&lt;/p></description><pubDate>Mon, 01 Dec 2025 00:00:00 +0000</pubDate><link>https://staging.cryptomator.org/blog/2025/12/01/winter-sale/</link><guid isPermaLink="true">https://staging.cryptomator.org/blog/2025/12/01/winter-sale/</guid><category>cryptomator</category><category>sale</category></item><item><title>Confidentiality Is a Must: Why Works Councils Need Encryption</title><description>&lt;p>Works councils play a central role in companies when it comes to &lt;strong>protecting the interests of employees&lt;/strong>. In doing so, they process &lt;strong>particularly sensitive data&lt;/strong> on a daily basis: personal complaints, election results, meeting minutes, or confidential agreements with trade unions. All of this information is not only subject to a &lt;strong>moral obligation of confidentiality&lt;/strong>—it also falls under the strict requirements of the &lt;a href="https://staging.cryptomator.org/compliance/gdpr/">&lt;strong>GDPR&lt;/strong>&lt;/a>.&lt;/p>
&lt;p>But how can a works council fulfill this responsibility in the digital age, when documents are often stored, shared, and edited collaboratively in the cloud? The answer lies in a combination of &lt;strong>technical security, organizational processes&lt;/strong>, and &lt;strong>the right tools&lt;/strong>.&lt;/p>
&lt;figure class="text-center">
&lt;img class="inline-block rounded-sm" src="https://staging.cryptomator.org/img/blog/encryption-for-works-councils.png" alt="Why Works Councils Need Encryption More Than Ever" />
&lt;/figure>
&lt;h2 id="sensitive-data-requires-special-protective-measures">Sensitive Data Requires Special Protective Measures&lt;/h2>
&lt;p>Personnel data, sick notes, conflict discussions, internal processes—&lt;strong>works councils have deep insights into the innermost workings of the company&lt;/strong>. This information concerns not only labor law disputes or restructuring, but also very personal situations in the lives of employees.&lt;/p>
&lt;p>The GDPR requires such personal data to be protected with appropriate technical and organizational measures. This explicitly includes &lt;strong>encryption&lt;/strong>. This measure is not an optional extra, but a &lt;strong>central component of works council work&lt;/strong> that complies with data protection regulations.&lt;/p>
&lt;h2 id="why-encryption-is-not-always-the-same">Why Encryption Is Not Always the Same&lt;/h2>
&lt;p>Many companies today already rely on &lt;strong>cloud-based systems such as Microsoft 365 or Google Workspace&lt;/strong>. These solutions advertise built-in security and encryption. However, what many people don&amp;rsquo;t know is that this often involves &lt;strong>server-side encryption&lt;/strong>, which means that although the data is encrypted, the provider or administrator has the keys. Anyone who has access to the system can also access the data. This applies in particular to internal company administrators or external service providers.&lt;/p>
&lt;p>This is not sufficient for particularly sensitive information, such as that processed by works councils. &lt;strong>End-to-end encryption&lt;/strong> is required here: only authorized persons can access the content – even cloud providers or central IT departments have no access. The key to access remains exclusively with the works council.&lt;/p>
&lt;h2 id="digital-sovereignty-with-cryptomator-hub">Digital Sovereignty With Cryptomator Hub&lt;/h2>
&lt;p>&lt;a href="https://staging.cryptomator.org/for-teams/">&lt;strong>Cryptomator Hub&lt;/strong>&lt;/a> provides works councils with a tool that meets precisely these requirements. The solution enables the creation of encrypted data rooms (known as vaults) that can be used on any common cloud platform – while &lt;strong>remaining entirely under the control of the council&lt;/strong>.&lt;/p>
&lt;p>&lt;strong>Vaults can be structured according to topics, roles, or working groups&lt;/strong> – for example, for minutes, election documents, complaints, or legal advice. &lt;strong>Access rights can be assigned granularly&lt;/strong> via a clear interface. For example, only the election committee is authorized to access election documents, while other members have access to general meeting minutes.&lt;/p>
&lt;p>Another advantage: the &lt;strong>Web of Trust&lt;/strong> principle allows the committee to integrate new devices and members on a trust basis – &lt;strong>without any central IT management or external administration&lt;/strong>. This is how digital self-administration becomes a reality.&lt;/p>
&lt;h2 id="integration-without-it-dependency">Integration Without IT Dependency&lt;/h2>
&lt;p>A &lt;strong>common obstacle&lt;/strong> for works councils is their &lt;strong>dependence on their employer&amp;rsquo;s IT infrastructure&lt;/strong>. What if the company itself provides the cloud platform? Or what if the works council does not operate its own technical infrastructure?&lt;/p>
&lt;p>&lt;strong>Cryptomator Hub works independently of the underlying cloud&lt;/strong>. This means that even if the company provides Dropbox, OneDrive, or Nextcloud, the works council can securely encrypt its content without the employer having access. &lt;strong>Control over the key and access structure remains exclusively with the committee&lt;/strong>.&lt;/p>
&lt;p>It can also be used on &lt;strong>private devices&lt;/strong>, which is an important factor for smaller works councils or committees without their own office infrastructure.&lt;/p>
&lt;h2 id="conclusion">Conclusion&lt;/h2>
&lt;p>Confidentiality is not a nice-to-have, but a legal obligation and a responsibility that must be upheld. Works councils facing digital transformation &lt;strong>should view the protection of sensitive data as a key requirement&lt;/strong>—not only to comply with legal requirements, but also to maintain the trust of the workforce.&lt;/p>
&lt;p>With end-to-end encryption and independent tools such as Cryptomator Hub, works councils can fulfill this obligation &lt;strong>securely, easily, and independently&lt;/strong>. And in doing so, they can send an important message: for digital maturity, for data protection, and for modern co-determination on an equal footing.&lt;/p></description><pubDate>Mon, 24 Nov 2025 00:00:00 +0000</pubDate><link>https://staging.cryptomator.org/blog/2025/11/24/encryption-for-works-councils/</link><guid isPermaLink="true">https://staging.cryptomator.org/blog/2025/11/24/encryption-for-works-councils/</guid><category>cryptomator</category><category>hub</category></item></channel></rss>