Showing all posts in

Security

Running outdated versions of Synapse is a problem
If you’re still using the old Apache-licensed Synapse version 1.98.0 or older, you’re running unsupported, vulnerable software.
Archie W
20/02/2025
ESS 24.07: Enhanced deployment health monitoring and next generation authentication
We’re excited to bring you Element Server Suite (ESS) 24.07, this month’s release includes several improvements to make your organisation’s Element experience smoother and more efficient.
Archie W
31/07/2024
Disney’s Slack breach tells an important story
News of Disney’s alleged Slack breach shows what can happen when organisations trust centralised communications platforms that don’t use end-to-end encryption
Steve Loynes
14/07/2024
Security release: Element X Android (0.4.12) and iOS (1.6.7)
We have released security updates for Element X Android and Element X iOS to address a high-severity vulnerability. This flaw could expose server-side key backup [https://spec.matrix.org/v1.10/client-server-api/#server-side-key-backups] private key material to Element's bug reporting ("rageshake") servers. The key material is
Element Security
15/05/2024
Security release: Synapse 1.105.1
Today we are releasing Synapse 1.105.1 [https://github.com/element-hq/synapse/releases/tag/v1.105.1], a security release to fix a High severity vulnerability. We advise you to upgrade your Synapse homeservers to this version at your earliest convenience. The security fix will also be included in
Element Security
23/04/2024
Secure communications landscape is now ‘Established,’ says Forrester
The new Secure Communications Solutions Landscape Q2 2024 report, from Forrester Research, categorises Secure Communications as an ‘Established’ marketplace.
Steve Loynes
19/04/2024
Meet Element R: our new unified crypto implementation
We’ve created a common cryptographic library implementation in Rust - codenamed Element R - for all our Element clients.
Archie W
27/02/2024
Security release: Element Android 1.6.12
Hello, Today we have released a security update of Element Android to address a pair of vulnerabilities. Please upgrade to the new version (1.6.12) at your earliest convenience. The two vulnerabilities are as follows: * Sensitive file disclosure via share activity (Medium, CVE-2024-26132 [https://www.cve.org/CVERecord?id=
Element Security
20/02/2024

Element is the fast, simple and private way to communicate with family, friends, teams, colleagues, organisations and the wider world.

Thanks for reading our blog— if you got this far, you should head toelement.ioto learn more!

Get started

For Web, Android, iOS, macOS, Windows & Linux