I used to use true crypt. But now it is Gpg, still as good.
To the best of my knowledge neither of these have been broken by criminals....or even the FBI.
TrueCrypt has a vulnerability in its driver that could give an attacker elevated privileges to your system. The vulnerability will never be fixed because its developers stopped maintaining it. There is an alternative to TrueCrypt called VeraCrypt in which the bugs were fixed.
http://www.pcworld.com/article/2987439/encryption/newly-found-truecrypt-flaw-allows-full-system-compromise.htmlJames Forshaw, a member of Google’s Project Zero team that regularly finds vulnerabilities in widely used software, has recently discovered two vulnerabilities in the driver that TrueCrypt installs on Windows systems.
The flaws, which were apparently missed in an earlier independent audit of the TrueCrypt source code, could allow attackers to obtain elevated privileges on a system if they have access to a limited user account.
Since TrueCrypt is no longer actively maintained, the bugs won’t be fixed directly in the program’s code. However, they have been fixed in VeraCrypt, an open-source program based on the TrueCrypt code that aims to continue and improve the original project.
VeraCrypt 1.15 that was released Saturday, contains patches for the two vulnerabilities, identified as CVE-2015-7358 and CVE-2015-7359, as well as for other bugs. The program’s developer only flagged the CVE-2015-7358 flaw as critical and said that it can be exploited by “abusing drive letter handling.”
