You mean different emails you got the standard phjishing emails to get your login so did i. But people have been getting fake btc wallet addresses in email chains from suppliers
Protonmail warning message
- Thread starter milex
- Start date
- Featured
DoomKitty
Member
- Joined
- Jul 27, 2019
- Messages
- 1,997
I can't edit my suggestion post above, but obviously always update your computer/phone and browser and do not run a operating system that doesn't have current updates/security patches available for it. That ESPECIALLY goes for all you PC users both because they are infinitely more vulnerable and also seeing as Windows 7 just got obsoleted....
Apparently this method of attack by compromising a machine and then inserting replies in pre-existing email threads is quite common:
https://www.cyberscoop.com/hacking-hijack-palo-alto-networks-spearphishing/
https://www.zdnet.com/article/this-sneaky-phishing-attack-hijacks-your-chats-to-spread-malware/
https://healthitsecurity.com/news/emotet-trojan-resurfaces-hijacking-email-content-from-victims
Apparently this method of attack by compromising a machine and then inserting replies in pre-existing email threads is quite common:
https://www.cyberscoop.com/hacking-hijack-palo-alto-networks-spearphishing/
https://www.zdnet.com/article/this-sneaky-phishing-attack-hijacks-your-chats-to-spread-malware/
https://healthitsecurity.com/news/emotet-trojan-resurfaces-hijacking-email-content-from-victims
Last edited by a moderator:
K
Kelakarekrew
Guest
I have the full headers to all the phishing emails I received, can post to pastebin or where ever you like. If you can DM me that's fine too.
TL;DR is that the return path for all are protonmail addresses.
Last edited:
Idaknowbetter
Member
- Joined
- Aug 5, 2019
- Messages
- 59
DoomKitty
Member
- Joined
- Jul 27, 2019
- Messages
- 1,997
Looks like Protonmail finally got around to sending out a "Your email was part of a phishing attack" email!! Link to their blog posting about preventing phishing attacks: Prevention.
With any end-to-end encrypted email service you have to accept that security can't be as robust as commercial email services. For example, Gmail logs the shit out of everything you do, including every IP address you use plus every device and browser. This way they can warn you if your account is accessed from a new device or a suspicious IP address. ProtonMail and other end-to-end encrypted email services don't do this, and rightfully so. Anonymity is a bigger priority, so they log as little about you as possible making phishing attacks much more difficult to detect. As long as you have the correct username and password, nothing else matters. They can't check and warn you if your account is logged in from a new device or a suspicious IP because they don't log that stuff in the first place, it's a compromise you just have to accept for wanting to remain anonymous. However, 2FA is something that, IMO, ProtonMail should enable by default on all accounts. It would have prevented all the recent phishing attacks and in-keeping with anonymity, ProtonMail don't require a mobile phone number, they use third party 2FA apps like Authy or Google Authenticator to generate 2FA codes. It's essential that anyone using end-to-end encrypted email also use 2FA, ProtonMail or otherwise.
- Joined
- Mar 16, 2019
- Messages
- 541
It depends i dont need the headers for the phishing emails its more the enail in the screeshot above where the scammer seems to jump into the middle of an email chain with his own spoofed email that interested me
- Joined
- Mar 16, 2019
- Messages
- 541
There's no legal requirement for companies operating under a MLAT to comply with a government agency to create a backdoor in an end-to-end encrypted service. Rumours of open source platforms (which both ProtonMail and Tutanota are) installing secret backdoor's are just that, rumours.
T
tellme
Guest
No. A German court forced Tutanota to providing a back door for authorities, as explained in this (unfurtunately German) news artice: https://www.sueddeutsche.de/digital/tutanota-verschluesselung-e-mail-ueberwachung-polizei-1.4676988
You a right that Switzerland handles this differently. No backdoors but ProtonMail is forced to provide police with mail box content of users if demanded by a court. Also, ProtonMail are obliged to provide police real-time access to mailboxes if a court demands it.
MLAT means that a foreign country can ask for that and that a Swiss court will approve that. See ProtonMails trsparency report, it proves that Switzerland has become a cooperative country: https://protonmail.com/blog/transparency-report/
Legisltion in Iceland still values privacy and is be the best place for anonymous mail and web hosting, To give an example: Iceland did not sign any MLAT treatiy, and while e.g. Tutanota must keep deleted emails stored for six months, in Iceland, if an email was deleted, it is immediately gone.
The times, they are changing...
Last edited:
T
tellme
Guest
PS: Here you can find an English translation of the German newspaper article from above: https://translate.google.com/translate?hl=en&sl=de&tl=en&u=https%3A%2F%2Fwww.sueddeutsche.de%2Fdigital%2Ftutanota-verschluesselung-e-mail-ueberwachung-polizei-1.4676988
Last edited:
Wow, just wow. So bout 2 weeks ago after a sketch back n forth with eu i preempteviley deleted permanently my prtnmail and simultanously my device gave up the ghost so was not on here ... fast fwd to now having magazine show up and vendor apparently gone ... gonna have to consider myself somewhat burned even though it came through and a bit uneasy about diving into the reading materials without independent testing... luckily i think i am all set for a while and can wait for testing
Tl;dr went away and came back to this shitstorm ... damn
Tl;dr went away and came back to this shitstorm ... damn
Last edited by a moderator:
LunaLovegood
Member
- Joined
- Oct 17, 2019
- Messages
- 174
HEY GUYS - -Either my HPPD has finally driven me psychotic, or I just had a couple of emails from the scammer pretending to be a vendor I had contacted!
I posted in the respective vendor’s thread, but he’s in the private section so I will post here too. In the morning, I will give the details on what made me think it’s the scammer, but the main part is the language style didn’t match.
I posted in the respective vendor’s thread, but he’s in the private section so I will post here too. In the morning, I will give the details on what made me think it’s the scammer, but the main part is the language style didn’t match.
S
spirit-crusher
Guest
I got both of those as well
Biskoinferno
MODERATOR
- Joined
- Sep 3, 2014
- Messages
- 1,474
I have a feeling this is gonna go on for awhile so everyone make sure you dot your i's and cross your t's when dealing with any vendor .Myself I deleted my proton email and started fresh with a new one .I am using this one as a test email to see if I get any open scams from vendors here .I am going to start to contact everyone to try and find out who is compromised. I started a new proton because my old one did get compromised.
Stay safe everyone
-
@
LatsDoodis:
Pharmacies, too. I switched my psychiatrist and just went through a pill mill telehealth place for a half year, then it got popular and all major pharmacies stopped filling Rx stims for this company’s independent contractor-providers, regardless of any reason than they treated ADHD patients with stims and it was a lot of people. Independent medical judgment from clinicians licensed and following rules. I needed the treatment. Who cares how many patients use the company? They followed the rules.
-
@
LatsDoodis:
That’s wild. It should be medical judgment, not corporate fear of lawsuits. Go set that doc straight. You need to have pain controlled aggressively or not at all. Be consistent.
- N @ NYStateofMind: Monday Funday
-
@
CnC5:
I hope all of DBG fam had a great weekend & a HAPPY EASTER 🐣 & HAPPY 420 🪴 Hope you guys have a great week as well!
-
@
Telp:
Novels for me
-
@
Telp:
It’s about to be happy Monday y’all. Have a great week and read some
-
@
xenxra:
@WTF7218 it may as well be that way with how little effort some of the people on here make to find information that's exactly where you would expect it to be.
-
@
ontovzik:
When I had long term shingles, lasting two months. All he could give me was a 10 day supply of dilaudid. He looked at the ground while we were talking about it. I could tell he was ashamed but it was the legislature and the governor that tied his hands. He was very upset that non-medical political people, the media, and the scared public were controlling how he treated his patients. Someday those people will need meds and a hospital bed and they will be gone.
-
@
ontovzik:
I had a great doctor, he had the true gift of a healer and he stayed on top of all the science. He straight up told me that for many people opiods work for managing short and long term pain.
-
@
ontovzik:
He peed it in the snow in my backyard.
-
@
WTF7218:
@xenxra 😆😂. Yes, but only a few brave souls will ever find the number. You must first order a Dirty Shirley from the bartender. Then you must discreetly take the cocktail napkin from under your drink and unfold it. There you will find the map to the location of the phone number, and clues to decipher the code that it is written in.
-
@
xenxra:
he left his phone number scribbled in a stall at the pub three blocks down
- N @ NYStateofMind: @Alkazar I would try one of those easy online ones .. reddit gives useful info about that
-
@
Alkazar:
@NYStateofMind I dont really have a history of abusing things, my docotr is just really stingy. I am thinking of switching.
- C @ Cheesus: Thanks xenxra
-
@
xenxra:
@Cheesus yeah, use snote
- P @ psychedpsych: Trump is cracking down….
- P @ psychedpsych: Hackers are the scum of the earth
- N @ NYStateofMind: so it was easy bc of my history
- N @ NYStateofMind: I didnt really tell him but he knew I needed a new script since my dr went to jail