ProtonMail Community Update

Discussion in 'Office and Communications' started by _CyberGhosT_, Jul 14, 2016.

?

Have you tried ProtonMail yet ?

  1. Yes

    61.6%
  2. No

    27.4%
  3. Plan to soon

    11.0%
  1. _CyberGhosT_

    _CyberGhosT_ Level 52
    Trusted

    Aug 2, 2015
    4,170
    27,465
    Retired
    Central US
    Linux Mint
    Default-Deny
    *Service Alert
    Just a Heads Up from ProtonMail I received in my Inbox
     

    Attached Files:

  2. Dirk41

    Dirk41 Level 16

    Mar 17, 2016
    802
    2,487
    Earth
    Windows 10
    Microsoft
    Thank you very much for sharing :)

    So in order to stay encrypted either the sender or the recipient have to install protonmail? ( like vpn)

    They rely just on donations ?
     
  3. carsten ibsen

    carsten ibsen Level 20

    Sep 18, 2016
    980
    5,206
    retired
    denmark
    Windows 10
    Microsoft
    I have a Proton Mail Account,i am very pleased with the service;)
     
  4. Ana_Filiz

    Ana_Filiz Level 4

    Aug 23, 2016
    192
    778
    Romania
    The same here, it looks very nice and works flawlessly. So far so good.
     
  5. antreas

    antreas Guest

    No they have premium accounts.
    Message Sending

    Emails sent between ProtonMail users

    • Always end-to-end encrypted.
    Emails from ProtonMail users to non-ProtonMail users

    • End-to-end encrypted if the “Encrypt for Outside” option is selected. Learn more here.
    • Otherwise encrypted with TLS if the non-ProtonMail mail server supports it (most providers such as Gmail, Yahoo, Hotmail, etc, support TLS). Note, since these message are encrypted, but not end-to-end encrypted, this means Gmail, Yahoo, Hotmail, etc, will be able to read these messages and hand them over. This is not possible if “Encrypt for Outside” is set and ProtonMail end-to-end encryption is enabled
     
  6. Dirk41

    Dirk41 Level 16

    Mar 17, 2016
    802
    2,487
    Earth
    Windows 10
    Microsoft
    Thank you !it was exactly the reply I needed, I was talking about end to end
     
  7. HarborFront

    HarborFront Level 33
    Content Creator

    Oct 9, 2016
    2,298
    5,754
    Far East
    #27 HarborFront, Jan 12, 2017
    Last edited: Jan 12, 2017
    But ProtonMail lacks of encrypting the subject header and sender/receiver email addresses. It can only encrypt the message body

    Tutanota can encrypt the subject header and sender/receiver email addresses
     
    LASER_oneXM and marzametal like this.
  8. _CyberGhosT_

    _CyberGhosT_ Level 52
    Trusted

    Aug 2, 2015
    4,170
    27,465
    Retired
    Central US
    Linux Mint
    Default-Deny
    Your not correct,
    From ProtonMail:
    • All messages in your ProtonMail inbox is stored end-to-end encrypted. This means we cannot read any of your messages or hand them over to third parties. This includes messages sent to you by non-ProtonMail users, although keep in mind if an email is sent to you from Gmail, Gmail likely retains a copy of that message as well.
    • Messages sent “Encrypted for Outside” are also stored end-to-end encrypted.
    • Subject lines and recipient/sender email addresses are encrypted, but not end-to-end encrypted.
    • Source: What is encrypted? - ProtonMail Support
     
    LASER_oneXM likes this.
  9. _CyberGhosT_

    _CyberGhosT_ Level 52
    Trusted

    Aug 2, 2015
    4,170
    27,465
    Retired
    Central US
    Linux Mint
    Default-Deny
    #29 _CyberGhosT_, Jan 13, 2017
    Last edited: Jan 13, 2017
    Heres another Difference between the two. and this fact is accurate ;)

    Protonmail requires two passwords (one for login and one for message encryption while Tutanota requires one password only. In the case of Protonmail the message encryption password is not sent to their servers, but live only in your web browser on your device. The login password is sent to their servers (and a copy is kept on their servers) in order to validate your login. This means that in the case of Tutanota the single password used for login and message encryption is stored on Tutanota's servers. The password is sent and stored encrypted, but the fact remains that Tutanota has a copy of your password.
    I will stick with ProtonMail ;)
    Source: https://www.quora.com/Which-service...rity-for-email-ProtonMail-or-Tutanota?share=1
     
    LASER_oneXM and HarborFront like this.
  10. HarborFront

    HarborFront Level 33
    Content Creator

    Oct 9, 2016
    2,298
    5,754
    Far East
    Tutanota is also end-to-end encryption
     
    LASER_oneXM and _CyberGhosT_ like this.
  11. HarborFront

    HarborFront Level 33
    Content Creator

    Oct 9, 2016
    2,298
    5,754
    Far East
    This is correct. I'm not disputing this.
     
    LASER_oneXM and _CyberGhosT_ like this.
  12. Crypto

    Crypto Level 2

    Jan 14, 2017
    63
    186
    United States
  13. _CyberGhosT_

    _CyberGhosT_ Level 52
    Trusted

    Aug 2, 2015
    4,170
    27,465
    Retired
    Central US
    Linux Mint
    Default-Deny
    #33 _CyberGhosT_, Jan 15, 2017
    Last edited: Jan 15, 2017
    LASER_oneXM likes this.
  14. Crypto

    Crypto Level 2

    Jan 14, 2017
    63
    186
    United States
    You should probably read this part:
    "Likely the DDoS attack on ProtonMail was orchestrated to follow with an offer of generous "help" it could not refuse, necessarily a re-route of all traffic through third-party "anti-DDoS" systems. Now the "Switzerland" based privacy firm is proxied by an Israeli firm for traffic analysis, network exploitation of users, cryptographic monkeying. Israeli expertise in the latter is unmatched. Classic gov-mil cyber op with great PR happy ending for exploited asset. Users of ProtonMail must not fret; they got lucky with this fumble. Don't trust this security faker; don't trust the next one."
     
    LASER_oneXM likes this.
  15. _CyberGhosT_

    _CyberGhosT_ Level 52
    Trusted

    Aug 2, 2015
    4,170
    27,465
    Retired
    Central US
    Linux Mint
    Default-Deny
    It's not accurate I read the entire story, PM ProtomMail support with this if you question what i am telling you, they will get a kick out of this.
    I will try to get a rep to come here and respond to your post, lol
    I visited the source, but you can believe this if you so choose, the only part correct is the early DDOS that took place very early
    when ProtonMail opened for public accounts ;)
     
    LASER_oneXM likes this.
  16. _CyberGhosT_

    _CyberGhosT_ Level 52
    Trusted

    Aug 2, 2015
    4,170
    27,465
    Retired
    Central US
    Linux Mint
    Default-Deny
    #36 _CyberGhosT_, Jan 16, 2017
    Last edited: Jan 16, 2017
    Here is a bit of "truth" for you:
    ProtonMail is run by Proton Technologies AG, a company based in the Canton of Geneva, and its servers are located at two locations in Switzerland, outside of US and EU jurisdiction. The service received initial funding through a crowdfunding campaign. The default account setup is free and the service is sustained by optional paid services. As of December 2015, ProtonMail has approximately 1 million users. .

    From 3 to 7 November 2015, ProtonMail was under several DDoS attacks that made the service largely unavailable to users. ProtonMail believed that it was affected by two separate attacks, the first led by a group of hackers known as the Armada Collective and the second by an unknown, more technically advanced group with abilities similar to a state-sponsored group. The first attack was tied to a ransom of 15 Bitcoins (roughly US$6,000) which ProtonMail eventually paid due to pressure from ISPs and other companies affected by the attack. The DDoS attacks, however, did not stop and instead began to take on more sophistication, with rates exceeding 100 Gbit/s. The company received an email from the Armada Collective in which they denied responsibility for the ongoing attack. During the attack, the company stated on Twitter that it was looking for a new data centre in Switzerland, saying that "many are afraid due to the magnitude of the attack against us". They have since posted that they "have a comprehensive long term solution which is already being implemented" END
     
    LASER_oneXM likes this.
  17. HarborFront

    HarborFront Level 33
    Content Creator

    Oct 9, 2016
    2,298
    5,754
    Far East
    #37 HarborFront, Jan 16, 2017
    Last edited: Jan 16, 2017
    If I'm not wrong those guys running ProtonMail are US citizens but residing in Switzerland. I believe they will surrender your info if there's a bit of pressure from the NSA/FBI, right? Time will tell. This is similar to some US VPN companies operating in Hong Kong. Hong Kong do not have data logging retention law but these US-operated VPN companies do keep logs of you even though they claimed not to.

    Secondly, if I'm not wrong again, the CEO of the Israeli company, Radware, which supplies the anti-DDOS technology to ProtonMail is related to the Unit 8200 Israeli Intelligence Corp Unit. Why do you think the Israelis is interested in ProtonMail?

    Quote

    Jolly Wallet was created by Radyoos, which was co-founded in 2011 by Roy Zisapel, who is also CEO of security provider Radware. He doesn’t advertise his connections to Unit 8200, though in an article from 2011 Zisapel notes he was part of the division. Zisapel seems to be using his experience in both offensive and defensive cyber to profit in two huge markets. He declined to be interviewed for this article.

    These Ex-Israeli Surveillance Agents Hijack Your Browser To Profit From Ads
     
    Sr. Normal 2.0 and LASER_oneXM like this.
  18. HarborFront

    HarborFront Level 33
    Content Creator

    Oct 9, 2016
    2,298
    5,754
    Far East
    #38 HarborFront, Jan 16, 2017
    Last edited: Jan 17, 2017
    News for ProtonMail users

    The new system of signing in and accessing your mails now only requires 1 password instead of 2 passwords.

    However, the option to use 2 passwords is there. And earlier users can also revert to the use of a single password.

    All these is to simply and the ease of using single password.
     
    Sr. Normal 2.0 and LASER_oneXM like this.
  19. LASER_oneXM

    LASER_oneXM Level 18
    Content Creator

    Feb 4, 2016
    850
    4,426
    university/IT
    Germany / Poland
    Windows 8.1
    Kaspersky
    #39 LASER_oneXM, Jan 17, 2017
    Last edited: Jan 17, 2017
    ^^....thanks for this info: now the login is faster and simpler/easier.
    The level of privacy seems to be stil very high (see first quote). I switched
    few minutes ago to the new one pasword mode...

    Two quotes from a support article about the new login mode:

    source: What is One Password Mode? - ProtonMail Support

     
    Sr. Normal 2.0 and _CyberGhosT_ like this.
  20. _CyberGhosT_

    _CyberGhosT_ Level 52
    Trusted

    Aug 2, 2015
    4,170
    27,465
    Retired
    Central US
    Linux Mint
    Default-Deny
    Yeah, I had one of the original beta testers acct's with the 1gig of storage, at the end of the beta it was upgraded to 5gig
    by the team for free. I also have one of the newer free acct's that comes with 500MB of storage I use it for my Gaming acct's.
    Both use the dual password system, I have used the Login + Decryption password so long I am just used to it.
    Been there from the start, was there for the DDos attack and don't see me leaving anytime soon.
    I may convert them to the single PW, but for now I don't mind typing two to login.
     
    Sr. Normal 2.0 and LASER_oneXM like this.
Loading...
Similar Threads Forum Date
Video Review Scarab Ransomware ext .[suupport@protonmail.com].Demonstration of attack video review. Video Reviews Nov 29, 2017
Introducing ProtonMail Contacts – the world’s first encrypted contacts manager Technology News Nov 23, 2017
Android ProtonMail reassures us that its Android app will be open sourced Android, iOS and Windows 10 Mobile Jul 23, 2017