We're working to make Wormhole the best file sending tool. If you have a question, come ask it in our Discord server!
Every design decision in Wormhole begins with the safety and privacy of your data in mind. We can't read your files, and no one else can either. Privacy isn’t an optional mode — it’s just the way that Wormhole works.
Wormhole uses end-to-end encryption to protect your files so they can never be shared or viewed by anyone but you and the intended recipients. Files are permanently deleted from the server after 24 hours. Wormhole encrypts all files with 128-bit AES-GCM encryption before they leave the browser. You can read more about the security design to learn more.
For files up to 5 GB, Wormhole stores your files on our servers for 24 hours.
For files larger than 5 GB, Wormhole uses peer-to-peer transfer to send your files directly from your browser to the recipient. So you'll need to keep the page open until the recipient downloads the files.
We're working on mobile apps! In the meantime, the Wormhole website works great on mobile devices, including iOS and Android.
See what features we're working on by visiting the Roadmap.
We're planning to introduce a Pro plan for larger file limits and explore an enterprise version for organizations that have high security requirements (law firms, etc.) that can't use existing cloud storage providers.
The source code for the streaming encryption implementation, based on Encrypted Content-Encoding for HTTP (RFC 8188) is open source. The full client and server code may be open sourced in the future.
So far no one has found any issues in the security design, but if you believe you've found a security vulnerability in Wormhole, please report it. We offer rewards of up to $1,000 for reporting a valid security issue. We will work with you to resolve the issue promptly. Thanks in advance!
Join our Discord server to ask questions and get answers!