⚡️🚨 NEW - Protonmail is now fully compromized
Proton Mail Helped FBI Unmask Anonymous ‘Stop Cop City’ Protester
Login to reply
Replies (67)
💥
Ouch
I wanted to ask you if your website, which I use every day, is open source? I would like to add a feature: every time I download a video, it adds my watermark to the top right of the video. Is that possible?
The “Proton is fully compromised” take is just noise. Nothing got hacked, nothing got backdoored. Swiss courts did what Swiss courts do: they forced Proton to hand over metadata tied to an account — payment info, login timestamps, IP logs. The encrypted inbox stayed encrypted.
The real issue is people mixing up encryption with anonymity. Proton protects your messages. It does not protect your identity. If your account is tied to a normal, traceable payment method, that breadcrumb exists — and a court can demand it. That’s not a breach, that’s jurisdiction.
And yeah, if the account had been funded with non‑linkable Bitcoin, there wouldn’t have been payment metadata to hand over. Not because of anything shady — just because you can’t leak what you never collected. That’s the whole point of minimizing data exhaust.
So the TL;DR for Nostr:
ProtonMail = good encryption, zero anonymity
Metadata = the real snitch
Bitcoin = privacy depends on how you use it
Threat models = not optional
Use the right tool for the job, or the job will use you.
you can vibe code this ask an llm to give u a cli script that uses ffmpeg.
I'll try, thank you.
lnemail.net (also: use this to sign up for other emails anonymously)
This is not the first time Proton has collaborated with government agencies.
Assume compromise. Period. Don't trust verify. I can't verify shit about proton
Which website ?
There will be signs
View quoted note →
There will be signs
View quoted note →
There will be signs
View quoted note →
View quoted note →
🎯
It's not compromised.
Just be intelligent how you use an email. Zero knowledge encryption means that even proton cannot access your email content.
They have an onion site where you can open an account anonymously. It's free. If you need advanced paid services you can pay with non-kyc BTC.
Proton operates under swiss law, they can be forced to hand out known data.
That's why to use it intelligently and not cry out "compromised" if the problem lies in the stupid behaviour of the end user.
TechRadar
Proton Mail doesn
Privacy and anonymity aren
Proton
Fighting Censorship with Proton Mail Encrypted Email Over Tor | Proton
As part of our efforts to continue protecting user privacy, we are launching a Tor hidden service to combat censorship and surveillance of Proton M...
Never trust centralized companies. Trust open-source code
We have two paragraphs alerting against them on our website under Values Matter...
View quoted note →
We always knew and wrote two paragraphs on it on Values Matter.
Yeah. But people need a VPN that won't have data to give to governments. That's our case.
We wrote back in the day two paragraphs about why proton is not trustworthy - on our website under Values Matter.
Not just payment, but your IP too
There are none email services allow anonymity prevent illegal stuff, use encrypted chat apps like signal, session or simplex instead
Anonymity on centralized services has no chance. For real anonymity it has to be decentralized and unknown who runs it.
I'm so surprised, of course they would cooperate. Don't trust Proton, encryption is not all.
Non PGP encrypted mail (99.9%) is only encrypted via transit by TLS V1.3 at best. Proton has no choice but to decrypt your mail as they recieve it, then Re-encrypt with your PGP key secured by your proton password. They can see all your mail, as a fault of the insecurity of the SMTP protocol. It's only Zero knowledge after they re-encrypt, you have to trust them not to scan 100% before they encrypt.
You can verify the apps, and web client via their GitHub repos. You can't verify that they're not scanning non PGP encrypted emails before they encrypt them with your proton PGP key. You can verify that proton-proton emails are end-to-end encrypted, and you can verify that PGP encrypted emails send and recieved through proton are e2ee.
The flaws of proton are inherent in the shitty SMTP email protocol. Theres only so much you can do to provide "private" email in this worldwide oppressive legal environment.
Accurate. I was a bit hyperbolic. But my point is that this is more trust and assurances than math and physics... and it's just not enough. Too much trust me bro.
Yeah but it's email, you either trust a service or run your own SMTP server and have your email get sent to spam every time, and recieve a shit ton of spam.
Point is, Protonmail actually offers a good service for what it is, but too many people expect perfect anonymity when using a clearnet, unencrypted ancient internet protocol. Very silly.
I wonder how people are capable to trust an email service as being anonymous....
What’s a good alternative?
Nothing is. The alternative is cut ties with people so you get no emails hahahaha
"No email out! Cut ties, huh?
We're in the first part of the second quarter of the 21st century; personal email servers basically get solid spam filtering out of the box these days. 😎
Fully compromised? 😶 Really?
Nostr based email client?
Yes, but unless your IP & domain are at the top of the "nice" (rich and well-connected corporate) lists, your sent mail isn't going to be delivered.
so what if i use proton vpn service when logging in to proton vpn? lol
Good analysis. And Proton is moving some of their infrastructure out of Switzerland due to new laws being proposed in the country.
Thoughts on “most VPN providers are owned by Israel connections”.
Why not just use the free version?
Nan. They are not. People must understand that they will always collaborate with authorities and give them what metadata they have. wich is IP probably and payment details. If you plan on doing illegal stuff, 1-dont use email, 2-dont use credit card for eg wich was the case. Also, if you become a gov agency target there is little places to hide. you always leave digital footprints. Proton is good to avoid 3rd parties spying on your emails like Google does. It's not a platform for crime.
That's bullshit. If you have a domain & DNS already, you're good. Grab a @npub1lnvp...7vjj host, setup your server & go.
Thanks for your precision @npub13thh...wvcs
Proton handed over payment data, not email content. The encryption held. The real lesson: your payment method is your identity. Pay for privacy tools with a credit card and you've already given up what you're trying to protect.
Whitenoise
Prosties trust it
⚡ MORE - For me, a platform that communicates REGULARLY with government authorities is COMPROMISED.
Thanks for the TLDR
That's correct.
Flash? More like trash
> You can however anonymize your useage of privacy friendly services like Proton, Tuta, or Mailbox by not entering your credit card number, phone number, name, personal email, or IP to that account.
PSA: don't put phone number or bank cards (all services) to keep your anonymity!
https://archive.ph/i0rwm
Damn. Now that is a honey trap which will catch a lot of people.
But there are no crime here.... 🤷♀️
Swiss should not colaborate, they broke all the trust
Vish
View quoted note →
So do we know you’re not? Or that you won’t be bought out by them?
My therms of service and privacy policy state. If a country tries to force us to log or collect data we are ready yo shut down business in that country.
We are constantly in R&D and collaborate in the web 5 efforts.
The idea of having a large user base on the VPN and brand recognition is to be able to receive a large number of answers on surveys so that we can come up with products that meet people where their needs are.
nevent1qgszrl7jn3q3w35r02sal7kwy575gqckq4pyrxpnuqpxawkx2x9glagqyp8pkcnwxglpr0ud5jf5d4mjhnfg6zt3s2m4x0jmesyxnykfj2vlypjxc83
Doesn’t exactly answer an Israeli buyout?
Had to scroll so far down to find this.
Finally osmeone who gets it...
Thanks for sharing
proton is a monumental improvement for users compared to what 99% of people are using and minimizes the footguns if they were to try any of the services they provided self-hosted. Great product and service, people should not let perfection distract from better.
It's really simple people.. look at it this way:
Government A goes to Government B, and ask for a favor, Government B uses it's force on a private company that already has and fully supports Government's ideology
people say use a private payment option (and I have said this myself), but what's better is to choose a service that doesn't have that ideology, does Proton Team look like they're here to disrupt?
This
Let alone that email is horrible for privacy and security
No actual encryption for example
What do you mean. I answred. Repeating.
I will never sell my business. I rather shut it down than sell it.
I will never log data in any country. I would rather not give customers an exit there than compromise with government.
What else?
I build the company as generational entity. To last. Not for exit. I am here on a mission to bring web 5. To enjoy my freedom in a society that everyone also is free. Being the only free bloke on the room is no fun.
Both of us founders were univertisy teachers. We educate people constantly in cyber security and privacy and Linux and GrapheneOS and backups and restores and password vaults and so on.
Maybe you can't understand us because you are projecting your personality on us. Maybe you lived your life as a sellout.
We didn't. Even when covid came on London I was one of 24 people in the very first demonstration.
I can understand you… that’s the clarity I was seeking. I’d have zapped you for this response had you not insulted me near the end. A bit premature to assume projecting.
Both of you have made many valid points.
The sad part is we are debating the OpSec of email in the 21st century.