Agree, Before I jump to conclusions I’d like to see a the full email in higher quality as well as the legitimacy logo Proton adds to official communication.
This would also somewhat indicate emails are being scanned before encrypted. Which is somewhat expected. They have a spam filter, after-all.
Wow, that’s not good
Yeah dropping a burner would seem to be the only way to go, but why not just not require potentially compromising info…? I don’t think there is a legal requirement to do so, maybe just spam prevention.
To all of those who complain about email address, phone number or payment requirement: try running an email service with 100 million users that offers a pretty generous free plan and has an ethical business model.
Then let us know if these anti-abuse systems are really necessary or if Proton is just a honeypot.
Then you need to make informed decisions and do some reading about your opsec. There is no silver bullet. I remember Proton’s CEO’s interview that if the “acitivists” use ProtonVpn they won’t ever have their IP address.
3 posts were split to a new topic: Proton reveals recovery emails of North Korean hackers
A post was merged into an existing topic: Proton reveals recovery emails of North Korean hackers