We can no longer pretend Protonmail is safe, even if that was to be assumed before. They've crossed the point of no return. Do not ever recommend them to anyone.
pull down to refresh
pull down to refresh
We can no longer pretend Protonmail is safe, even if that was to be assumed before. They've crossed the point of no return. Do not ever recommend them to anyone.
If you want to stay private, pay with Bitcoin, not credit card.
It's not as simple as that.
Lots of ways to give away your identity when paying with Bitcoin. Only very few ways not to.
Yes, but in any case it's more private than credit cards, even if not used properly.
I disagree.
How so? How can credit cards be more private than poorly used Bitcoin if there is literally your name and surname sent to the merchant?
Both name and surname are connected to your centralized exchange.
If you want to insist that potential layer of indirection makes any tangible difference, then you are arguing semantics, not realities.
Besides, your merchant most likely captured your name and surname during the payment process too.
In either case, stating that paying with Bitcoin let's you stay private is just blatantly false.
archived link
Fully comprised? Yeah... I don't think so. Adjust your expectations. Clearly this guy had the same delusion.
Proton is a company. They provide a good service. They will not protect you when the cops come knocking. Anything they have on you they will turn over. This is not new. It's not a reason to not use them. It's something to be aware of.
There are much more private ways this person could have used their service.
If you think anyone is gonna go to prison to protect your privacy... you are gonna have a rough time of it.
Are you a Libertarian?
Do you think the FBI should have the power to demand data from Swiss companies?
What if it was Chinese government agency that wanted this data?
Is the USA somehow exempt from any restrictions on state power projection?
If you're paying for a mailbox with a credit card, to then run a facebook group, to then have a big mouth and think you're untouchable ...
... then you deserve to get caught, because you're a dumb little fuck and you needed this lesson to get back to reality.
Really bad opsec. There are no perfect tools. You have to know how you are exposed and where you can't trust third parties.
You enter a credit card into a web site. You are screwed in most cases.
Like all companies including Stacker.news. The police come, you hand stuff over to them. Grownups realize that they are inheritly trusting companeis. The thing to look for is when the company makes it so they don't have much of value to turn over.
Bottom line, it's up to you. No company is gonna go to prison for you. If you are dumb, you're gonna pay the dumb tax
Pay with redotpay and not your real credit card to avoid any inconvenience
Did you read the article? The guy doxed himself with payment data
Proton is open and transparent about the data they share
Proton does not protect dumb criminals
It's not hard to use proton safely but it does require some very basic and obvious protection measures (vpn, generic subject, anonymous payment etc)
build your own email system, with yunohost and freedombox it works very well, just be sure to have a good ISP support.
Have always wondered how truly private and secure proton are.
They look like a gmail clone and I suspect are just a front for US state surveillance.
Hard to argue with that. Once the trust is gone, the "privacy" label is just marketing. Definitely time to move to more decentralized options.
The credit card doxing is the obvious lesson, but there's a deeper one that nobody's talking about: even with perfect encryption and a trustworthy provider, your email address is still a public attack surface. Anyone who knows it can reach your inbox.
Spam filters are the industry's answer, and they're all built on the same broken model — an algorithm decides what you should see. You're just trading one gatekeeper (Proton, Gmail) for another (their spam classifier).
What if inbox access was permission-based instead of filter-based? I've been building exactly this: unknown senders pay 100 sats via Lightning to reach you. Pay once, whitelisted forever. If the message was legitimate, 8 cents was nothing. If it was spam, the economics kill it at scale.
No provider trust required. No algorithm deciding what's important. The sender proves intent with the smallest possible economic signal.
The Proton situation isn't really about Proton — it's about the entire model of trusting a third party with your attention. The fix isn't finding a better provider. It's making access itself permissioned.