A few hours later, about 1,000 messages come in split between my inbox and spam box, as well as another ominous threat to delete my paid-for email account for something I didn't do, didn't ask for, and need help with. I set up filters and waited for the block to be lifted. Also phishing, according to ProtonMail Support. "WARNING," the ominous message says, "New incoming emails are being temporarily rejected and delayed." The message continues, threatening to punish a victim for being victimized, "If this continues to happen, we may have to delete your account." Not only is my account wholly unusable for at least a few days, but to make matters even worse, ProtonMail threatens to DELETE the account of anybody unfortunate enough to be targeted by these attackers.ĭefinitely not proof or evidence whatsoever. I start to clean it, but then I noticed a starred message from ProtonMail. After I spoke with MailPoet, they were able to confirm that out of the tens of thousands of messages sent to me, only 4 came from their sending service. They were all double-opt-in confirmation emails, all from WordPress blogs, and after some inspection, they all came from the same plugin authored by MailPoet, who also runs a mail sending service.
who thought they could trust their mail provider, and even paid for the privilege.Įarly Sunday morning, I noticed that I had a few thousand unread mail messages. A nation state attacker can flood a single address on an account, and test deliverability for a different address. And on the confidentiality front, this disables the *entire* account, and every address inside of it. Want 5 more days of downtime? Run the script again.
That means, at the whim of any child on XBOX Live, your (paid) ProtonMail account is not usable for receiving mail for 5 days. Potentially, an attacker can also TAKE OVER A PROTONMAIL ACCOUNT. ProtonMail claims to be secure, and safe from hackers, but my experience, **as a paid user, no less**, shows that any ProtonMail account is less than secure, as any script kiddie with an off-the-shelf attack script can make your ProtonMail account unusable for up to 5 days at a time. For anything to be secure, all three of these elements are equally important.
The Triad is Confidentiality, Integrity, Availability. This is in large text, above the fold on Īnybody who works in information security is well familiar with the CIA (also called AIC) Triad. ProtonMail - Secure Email Based in Switzerland.
0 kommentar(er)
