Navigation
Search
|
Hacker Says They Compromised ProtonMail; ProtonMail Calls BS
Saturday November 17, 2018. 08:19 PM , from Slashdot
A hacker going by the name AmFearLiathMor is claiming to have hacked ProtonMail and stolen 'significant' amounts of data. They have posted a ransom demand to an anonymous Pastebin but it reads like a prank, as it states that the alleged hackers have access to underwater drone activity and treaty violations in Antarctica. Lawrence Abrams writes via BleepingComputer: According to the message, a hacker going by the name AmFearLiathMor makes quite a few interesting claims such as hacking ProtonMail's services and stealing user's email, that ProtonMail is sending their user's decrypted data to American servers, and that ProtonMail is abusing the lack of Subresource Integrity (SRI) use to purposely and maliciously steal their user's passwords. After reading the Pastebin message (archive.is link), which is shown in its entirety below minus some alleged keys, and seeing the amount of claims, the first thing that came to mind was a corporate version of the sextortion scams that have been running rampant lately. As I kept reading it, though, it just felt like a joke. ProtonMail posted on Twitter that this is a hoax and that there is no evidence that anything states is true. The encrypted email service provided a statement to BleepingComputer: 'We believe this extortion attempt is a hoax, and we have seen zero evidence to suggest otherwise. Not a single claim made is true and many of the claims are unsound from a technical standpoint. We are aware of a small number of ProtonMail accounts that have been compromised as a result of those individual users falling for phishing attempts. However, there is zero evidence of a breach of our infrastructure.'
Read more of this story at Slashdot.
rss.slashdot.org/~r/Slashdot/slashdot/~3/ImfYJvMOqAM/hacker-says-they-compromised-protonmail-protonm...
|
25 sources
Current Date
Nov, Thu 21 - 17:16 CET
|