51 matches found
EUVD-2021-19566
Malware in sbrugna...
CVE-2021-32816
ProtonMail Web Client is the official AngularJS web client for the ProtonMail secure email service. ProtonMail Web Client before version 3.16.60 has a regular expression denial-of-service vulnerability. This was fixed in commit 6687fb. There is a full report available in the referenced...
ProtonMail Code Vulnerabilities Leaked Emails
By Waqas Key Findings ProtonMail, a popular Swiss-based email service that markets itself as a secure and private alternative to… This is a post from HackRead.com Read the original post: ProtonMail Code Vulnerabilities Leaked Emails...
Encrypted Email Service ProtonMail Now Supports Physical Security Keys
By Waqas Two Factor Authentication via Physical Security Keys is Now Possible on ProtonMail. This is a post from HackRead.com Read the original post: Encrypted Email Service ProtonMail Now Supports Physical Security Keys...
A week in security (Sept 6 – Sept 12)
Last week on Malwarebytes Labs Apple delays plans to search devices for child abuse imagery. ProtonMail hands user’s IP address and device info to police, showing the limits of private email. Patch now! Netgear fixes serious smart switch vulnerabilities. Tor vs VPN—What is the difference? Windows...
ProtonMail Now Keeps IP Logs
After being compelled by a Swiss court to monitor IP logs for a particular user, ProtonMail no longer claims that "we do not keep any IP logs." EDITED TO ADD 9/14: This seems to be more complicated. ProtonMail is not yet saying that they keep logs. Their privacy policy still states that they do n...
ProtonMail Amends Its Policy After Giving Up Activist’s Data
The email service says it was unable to appeal a Swiss court’s demand to log the IP address of a French climate advocate...
ProtonMail Forced to Log IP Address of French Activist
The privacy-hugging, end-to-end encryption-providing email provider ProtonMail was forced to log the IP address of a French activist and turn it over to Europol, according to a French police report that came to light over the weekend. The activist was arrested as a result. In the wake of the news...
ProtonMail logged, shared activist’s IP address with Swiss police
By Waqas ProtonMail is being criticized for sharing French activists IP address with Swiss authorities while claiming it does not save logs. End-to-end encrypted email service provider ProtonMail is currently facing criticism after the company shared the IP address of an anti-gentrification...
ProtonMail hands user’s IP address and device info to police, showing the limits of private email
They say there’s two sides to every story. Depending on your point of view, you may have heard a recent story thats either about overreaching law enforcement and protestors exposed by organisations happy to hand over revealing data despite saying they wont. Or: BREAKING: legitimate business...
ProtonMail Logs Activist's IP Address With Authorities After Swiss Court Order
End-to-end encrypted email service provider ProtonMail has drawn criticism after it ceded to a legal request and shared the IP address of anti-gentrification activists with law enforcement authorities, leading to their arrests in France. The Switzerland-based company said it received a "legally...
How to send an anonymous email
Sometimes readers ask us how to send an anonymous email or how criminals and scammers manage to send anonymous emails. Since this is not an easy question to answer, because, for starters, there are several ways to interpret the question, I’ll try to give you some information here. Interpret the...
CVE-2021-32816
ProtonMail Web Client is the official AngularJS web client for the ProtonMail secure email service. ProtonMail Web Client before version 3.16.60 has a regular expression denial-of-service vulnerability. This was fixed in commit 6687fb. There is a full report available in the referenced...
CVE-2021-32816
ProtonMail Web Client is the official AngularJS web client for the ProtonMail secure email service. ProtonMail Web Client before version 3.16.60 has a regular expression denial-of-service vulnerability. This was fixed in commit 6687fb. There is a full report available in the referenced...
Code injection
ProtonMail Web Client is the official AngularJS web client for the ProtonMail secure email service. ProtonMail Web Client before version 3.16.60 has a regular expression denial-of-service vulnerability. This was fixed in commit 6687fb. There is a full report available in the referenced...
CVE-2021-32816
ProtonMail Web Client (AngularJS) before v3.16.60 is affected by a regular expression denial-of-service vulnerability. The issue stems from the regex handling in the Web Client and can be triggered client-side, leading to resource exhaustion. It has been fixed in commit 6687fb. A full report is a...
CVE-2021-32816 Regular expression Denial of Service in ProtonMail
ProtonMail Web Client is the official AngularJS web client for the ProtonMail secure email service. ProtonMail Web Client before version 3.16.60 has a regular expression denial-of-service vulnerability. This was fixed in commit 6687fb. There is a full report available in the referenced...
AngularJS ProtonMail Web Client 资源管理错误漏洞
AngularJS is an open source web application framework based on TypeScript.ProtonMail Web Client is an AngularJS web client. AngularJS ProtonMail Web Client is vulnerable to a resource management error vulnerability that stems from the presence of a regular expression denial of service vulnerabili...
ProtOSINT - A Python Script That Helps You Investigate Protonmail Accounts And ProtonVPN IP Addresses
ProtOSINT is a Python script that helps you investigate ProtonMail accounts and ProtonVPN IP addresses. Description This tool can help you in your OSINT investigation on Proton service for educational purposes only. ProtOSINT is separated in 3 sub-modules: 1 Test the validity of one protonmail...
Ryuk Rakes in $150M in Ransom Payments
The Ryuk ransomware has earned its operators an estimated $150 million, according to an examination of the malware’s money-laundering operations. Joint research released this week from Brian Carter, principal researcher at HYAS, and Vitali Kremez, CEO at Advanced Intelligence, took a the look und...