this post was submitted on 07 May 2024
519 points (94.4% liked)

Technology

60039 readers
3959 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] yolo 158 points 7 months ago (1 children)

Upon receiving the recovery email from Proton Mail, Spanish authorities further requested Apple to provide additional details linked to that email, leading to the identification of the individual.

I like how no ones talking about how Apple (the one its fanboys say is most privacy centric company) was the one that helped identity the individual.

[–] [email protected] 49 points 7 months ago (2 children)

Proton leaked the recovery email. Apple has never given any guarantee about their mail service, which isn’t the case of Proton

Don’t put any recovery info on Proton

[–] [email protected] 22 points 7 months ago (1 children)

Proton has never given any guarantee about hiding all account metadata from the Swiss government either.

[–] [email protected] -1 points 7 months ago* (last edited 7 months ago) (1 children)

They’re all like “privacy and freedom”, “take control of your data”…

They’re saying they’re the best for privacy literally on their website. You might argue that Apple does it too, which is fair, even though everyone knows it’s a lie

But yea anyways that’s a big flaw, they shouldn’t push customers to enable a feature that effectively deanonymizes them

[–] [email protected] 5 points 7 months ago (1 children)

They’re all like “privacy and freedom”, “take control of your data”…

That’s correct. And the fella used that freedom and control over his data to deanonymize himself. It isn’t proton’s job to be completely idiot-proof. They tell you what it is they do, and they do it. There are no false claims made.

[–] [email protected] -1 points 7 months ago

I think you didn’t read my last paragraph

[–] [email protected] 13 points 7 months ago (1 children)

Don’t put any recovery info on Proton

About that. I'm still making the transition from gmail and currently most of my mail still goes to gmail first and gets forwarded to Proton through their easy switch process. Surely this is just as up for grabs as a recovery email, right?

FWIW I'm not likely to be investigated any time soon so I'm not worried either way.

[–] [email protected] 20 points 7 months ago (1 children)

That's significantly worse privacy-wise, since Google gets a copy of everything.

A recovery email in this case was used to uncover the identity of the account-holder. Unless you're using proton mail anonymously (if you're replacing your personal gmail, then probably not) then you don't need to consider the recover email as a weakness.

[–] [email protected] 8 points 7 months ago

That's significantly worse privacy-wise, since Google gets a copy of everything.

Obviously, but I still haven't gone through all the things I've ever signed up to and changed my email to the proton one. When I sign up to new stuff I use Proton, this is a necessary step for transition... And one that is likely to stay in place for a very long time since I'm going to keep procrastinating it.

Unless you're using proton mail anonymously then you don't need to consider the recover email as a weakness.

Excellent point.