all-in-one privacy solution":["Proton Unlimited es una solución de privacidad todo en uno"],"Black Friday":["Black Friday"],"No ads. Privacy by default.":["Sin anuncios. Privacidad por defecto."],"People before profits":["Primero las personas, luego los beneficios"],"Security through transparency":["Seguridad con transparencia"],"The best Proton Mail ${ BLACK_FRIDAY } deals":["Las mejores ofertas de Proton Mail en el ${ BLACK_FRIDAY }"],"The world’s only community- supported email service":["El único servicio de correo electrónico del mundo financiado por la comunidad"]},"specialoffer:limited":{"${ hours } hour":["${ hours } hora","${ hours } horas"],"${ hoursLeft }, ${ minutesLeft } and ${ secondsLeft } left":["Tiempo restante: ${ hoursLeft }, ${ minutesLeft } y ${ secondsLeft }"],"${ minutes } minute":["${ minutes } minuto","${ minutes } minutos"],"${ seconds } second":["${ seconds } segundo","${ seconds } segundos"],"Limited time offer":["Oferta por tiempo limitado"]},"specialoffer:listitem":{"Create multiple addresses":["Cree múltiples direcciones"],"Hide-my-email aliases":["Seudónimos de hide-my-email"],"Quickly unsubscribe from newsletters":["Cancele suscripciones a boletines rápidamente"],"Use your own domain name":["Use su propio dominio"]},"specialoffer:logos":{"As featured in":["Tal como aparece en"]},"specialoffer:metadescription":{"Get an encrypted email that protects your privacy":["Obtenga un correo electrónico cifrado que protege su privacidad"]},"specialoffer:metatitle":{"Proton Mail Black Friday Sale - Up to 40% off":["Oferta de Black Friday de Proton Mail: hasta un 40% de descuento"]},"specialoffer:newmetadescription":{"Get up to 40% off Proton Mail subscriptions this Black Friday. Find great deals on our secure end-to-end encrypted email plans.":["Aproveche las rebajas de Black Friday y obtenga suscripciones de Proton Mail con hasta un 40 % de descuento. Encontrará las mejores ofertas en planes de correo electrónico seguro cifrado de extremo a extremo."]},"specialoffer:newmetatitle":{"Proton Mail Black Friday sale | Up to 40% off secure email":["Rebajas de Black Friday en Proton Mail | Hasta un 40 % de descuento en correo electrónico seguro"]},"specialoffer:note":{"* Billed at ${ TOTAL_SUM } for the first year":["*Con un costo de ${ TOTAL_SUM } durante el primer año"],"*Billed at ${ TOTAL_SUM } for the first 2 years":["*Con un costo de ${ TOTAL_SUM } durante los primeros 2 años"],"30-day money-back guarantee":["Garantía de devolución de dinero de 30 días"],"Billed at ${ TOTAL_SUM } for the first 2 years":["Con un costo de ${ TOTAL_SUM } durante los primeros 2 años"],"Billed at ${ TOTAL_SUM } for the first year":["Con un costo de ${ TOTAL_SUM } durante el primer año"],"You save ${ SAVE_SUM }":["Ahorre ${ SAVE_SUM }"]},"specialoffer:off":{"${ PERCENT_OFF } off":["-${ PERCENT_OFF }"]},"specialoffer:testimonial":{"I love my ProtonMail":["Amo mi Proton Mail"],"My favorite email service":["Mi servicio de correo electrónico favorito"],"Thanks Proton for keeping us all safe in the complicated internet universe.":["Gracias Proton por mantenernos a salvo en el complicado universo de Internet."],"You get what you pay for. In the case of big tech, if you pay nothing, you get used. I quit using Gmail and switched to @ProtonMail":["Obtiene aquello por lo que paga. En el caso de la gran tecnología, cuando uno no paga nada, se acostumbra. Dejé de usar Gmail y cambié a @ProtonMail"]},"specialoffer:time":{"Days":["Días"],"Hours":["Horas"],"Min":["min"]},"specialoffer:title":{"And much more":["Y mucho más"],"Safe from trackers":["A salvo de rastreadores"],"Stay organized":["Mantenga todo en orden"],"Black Friday email deals":["Ofertas en correo electrónico del Black Friday"],"Don’t just take our word for it":["No confíe solo en nuestra palabra"],"Make your inbox yours":["Tome posesión de su bandeja de entrada"],"Our story":["Nuestra historia"],"Transfer your data from Google in one click":["Transfiera sus datos de Google con un solo clic"]},"specialoffer:tooltip":{"Access blocked content and browse privately. Includes ${ TOTAL_VPN_SERVERS }+ servers in ${ TOTAL_VPN_COUNTRIES }+ countries, connect up to 10 devices, access worldwide streaming services, malware and ad-blocker, and more.":["Acceda a contenidos bloqueados y navegue de forma privada. Incluye más de ${ TOTAL_VPN_SERVERS } servidores en más de ${ TOTAL_VPN_COUNTRIES } países, se conecta con hasta 10 dispositivos, accede a servicios de transmisión de todo el mundo, bloquea malware y publicidad y mucho más."],"Easily share your calendar with your family, friends or colleagues, and view external calendars.":["Comparta su calendario con familiares, amigos y compañeros fácilmente y consulte calendarios externos."],"Includes support for 1 custom email domain, 10 email addresses, 10 hide-my-email aliases, calendar sharing, and more.":["Incluye compatibilidad con 1 dominio de correo electrónico personalizado, 10 direcciones de correo electrónico, 10 seudónimos de hide-my-email, posibilidad de compartir calendario, etc."],"Includes support for 3 custom email domains, 15 email addresses, unlimited hide-my-email aliases, calendar sharing, and more.":["Incluye compatibilidad con 3 dominios de correo electrónico personalizado, 15 direcciones de correo electrónico, seudónimos ilimitados de hide-my-email, posibilidad de compartir calendario, etc."],"Manage up to 25 calendars, mobile apps, secured with end-to-end encryption, 1-click calendar import from Google, and more.":["Administre hasta 25 calendarios, apps móviles, protegido con cifrado de extremo a extremo, importación de calendario con 1 clic desde Google y más."]},"Status banner":{"Learn more":["Más información"],"Please note that at the moment we are experiencing issues with the ${ issues[0] } service.":["Tenga en cuenta que, en este momento, estamos experimentando problemas con el servicio ${ issues[0] }."],"We are experiencing issues with one or more services at the moment.":["En este momento, tenemos problemas con uno o más servicios."]},"Status Banner":{"At the moment we are experiencing issues with the Proton VPN service":["En este momento, tenemos problemas con el servicio Proton VPN."],"Learn more":["Más información"]},"steps":{"Step":["Paso"]},"suggestions":{"Suggestions":["Sugerencias"]},"Support":{"Sub category":["Subacategoria","Subcategorías"]},"Support article":{"${ readingTime } min":["${ readingTime } minuto","${ readingTime } minutos"],"Category":["Categoría","Categorías"],"Didn’t find what you were looking for?":["¿No encontró lo que buscaba?"],"General contact":["Contacto general"],"Get help":["Obtener ayuda"],"Legal contact":["Contacto legal"],"Media contact":["Contacto para medios"],"Partnerships contact":["Contacto para colaboradores"],"Reading":["Lectura"]},"Support Form Platform option":{"VPN for Android TV":["VPN para Android TV"],"VPN for Apple TV":["VPN para Apple TV"],"VPN for Chromebook":["VPN para Chromebook"]},"Support troubleshooting":{"App version":["Versión de la app"],"Browser":["Navegador"],"Check if this helps":["Compruebe si le sirve"],"Choose a product":["Elija un producto"],"Did this solve your issue?":["¿Le ha resultado útil para resolver el problema?"],"Faster assistance is just a few clicks away":["Solo le separan unos clics de una asistencia más rápida"],"How can we help?":["¿Cómo podemos ayudarle?"],"No, contact support":["No, contactar a soporte"],"Please fill out one field after another":["Complete un campo después de otro"],"Please make your selections":["Realice sus selecciones"],"Proton account":["Cuenta de Proton"],"Proton for Business":["Proton for Business"],"Thank you for your feedback":["Gracias por sus comentarios"],"What can we help with?":["¿En qué podemos ayudarle?"],"Yes":["Sí"]},"support_modal_search_query":{"Search query":["Consulta"]},"support_search_button":{"Search":["Buscar"]},"support_search_i_am_looking_for":{"I'm looking for":["Busco"]},"SupportForm":{"For a faster resolution, please report the issue from the Bridge app: Help > Report a problem.":["Para una resolución más rápida, reporte el problema desde la app Bridge: Ayuda > Reportar un problema."],"Information":["Información"]},"SupportForm:option":{"Account Security":["Seguridad de la cuenta"],"Contacts":["Contactos"],"Custom email domain":["Dominio de correo electrónico personalizado"],"Email delivery and Spam":["Entrega de correo electrónico y spam"],"Encryption":["Cifrado"],"Login and password":["Inicio de sesión y contraseña"],"Merge aliases and accounts":["Combinar alias y cuentas"],"Migrate to Proton":["Migrar a Proton"],"Notifications":["Notificaciones"],"Other":["Otros"],"Plans and billing":["Planes y facturación"],"Proton for Business":["Proton for Business"],"Sign up":["Regístrese"],"Storage":["Almacenamiento"],"Users, addresses, and identities":["Usuarios, direcciones e identidades"]},"SupportForm:optionIntro":{"Select a topic":["Seleccione un tema"]},"Testimonial":{"Awards":["Premios"],"Customers":["Clientes"],"Featured":["Destacados"],"Go to testimonial source":["Ir a la fuente testimonial"],"Open source of award":["Abrir fuente del premio"],"Open source of quote":["Abrir fuente de la cita"],"Reviews":["Reseñas"],"Videos":["Videos"],"Watch on TikTok":["Ver en TikTok"],"Watch on YouTube":["Ver en YouTube"]},"TestimonialCategory":{"Awards":["Premios"],"Customers":["Clientes"],"Featured":["Destacados"],"Media":["Medios"],"Reviews":["Reseñas"],"Videos":["Videos"]},"Text":{"If you need help, check out our ${ supportLink }.":["Si necesita ayuda, consulte nuestra ${ supportLink }."],"The page you’re looking for might have been removed, or it could be an\nold link.":["Es posible que la página que busca haya sido eliminada o que sea un\nenlace antiguo."],"Your question may already have an answer in our knowledge base:":["Puede que haya respuesta a su pregunta en nuestra base de conocimientos:"]},"Title":{"On this page":["En esta página"],"Related articles":["Artículos relacionados"],"Share ${ thisPage }":["Compartir ${ thisPage }"],"Switch to Proton Pass - Contact us":["Cambie a Proton Pass - Contáctenos"],"Thank you!":["¡Gracias!"],"this page":["esta página"]},"tooltip_vpn":{"Access blocked content and browse privately. Includes ${ TOTAL_VPN_SERVERS }+ servers in ${ TOTAL_VPN_COUNTRIES }+ countries, highest VPN speed, ${ TOTAL_VPN_CONNECTIONS } VPN connections, worldwide streaming services, malware and ad-blocker, and more.":["Acceda a contenidos bloqueados y navegue de forma privada. Incluye más de ${ TOTAL_VPN_SERVERS } servidores en más de ${ TOTAL_VPN_COUNTRIES } países, la mayor velocidad VPN, ${ TOTAL_VPN_CONNECTIONS } conexiones VPN, servicios de transmisión en todo el mundo, bloqueador de malware y publicidad y mucho más."]},"vpn_servers":{"Get Proton VPN Plus":["Obtener Proton VPN Plus"]},"wallet_signup_2024:Action":{"Get Proton Wallet":["Obtener Proton Wallet"]},"wallet_signup_2024:Homepage hero product link title":{"Wallet":["Wallet"]},"wallet_signup_2024:Homepage product navigation bar":{"Wallet":["Wallet"]},"wallet_signup_2024:menu item":{"Bitcoin guide":["Guía sobre Bitcoin"],"Proton Wallet news":["Novedades sobre Proton Wallet"],"Proton Wallet support":["Soporte para Proton Wallet"]},"wallet_signup_2024:Pricing":{"Includes everything in Proton Unlimited and":["Incluye todas las funciones en Proton Unlimited y"],"Limited availability":["Disponibilidad limitada"],"The easiest way to securely own, send, and receive Bitcoin":["La forma más fácil de retener, enviar y recibir Bitcoin con seguridad"]},"wallet_signup_2024:ProductRange":{"Discover Proton Wallet":["Descubra Proton Wallet"],"Store and transact Bitcoin privately with an encrypted self-custody wallet.":["Almacene Bitcoin y negocie de forma privada con una cartera de autocustodia cifrada."]},"wallet_signup_2024:wallet bitcoin":{"Learn about Bitcoin, the Internet's value network.":["Infórmese sobre Bitcoin, la red de valor de internet."]},"wallet_signup_2024:wallet overview":{"Ensure you're always in control of your Bitcoin.":["Asegúrese de tener siempre el control de su Bitcoin."]},"wallet_signup_2024:wallet security":{"The encrypted, open-source wallet that puts you in control.":["La cartera cifrada de código abierto que le permite controlarlo todo."]}}},"base":"blog","cdn":{"enabledForAssets":true,"enabledForImages":true,"url":"https://pmecdn.protonweb.com/"},"unleashApi":"https://account.proton.me/api"};
window.frameworkContext = frameworkContext;
const context = frameworkContext.base === '' ? '' : `${frameworkContext.base}/`;
window.__toAssetUrl = (filename) => {
if (frameworkContext.cdn !== undefined && frameworkContext.cdn.enabledForAssets === true) {
return `${frameworkContext.cdn.url}${context}${filename}`;
} else {
return `/${context}${filename}`;
}
};
})();
Hacker tricks are getting smarter, but Proton Mail has you covered | Proton
Over the past year, hackers have been using new and clever techniques to steal people’s online data. At Proton, we’ve been monitoring these evolving strategies and updating our defenses to stay ahead of the arms race.
Often, the attacks involve new forms of phishing or social engineering, trying to exploit the weakest link in any system: people. In both cases, the attackers are trying to catch you with your guard down.
With phishing attacks, hackers send emails hoping to trick you into clicking a malicious link, downloading an attachment containing malware, or entering your login details into a fake login page.
Social engineering attacks use other forms of manipulation, like getting you to call fake customer support and divulge sensitive information that way.
Our goal at Proton is to help you keep your guard up by making security more intuitive and automatic. Your Proton Account comes with a unique set of security features, such as our Official badge(nueva ventana) and the Proton Sentinel(nueva ventana) program, that provide a high level of defense against many of the most clever new attacks.
This article lists a few of the most alarming hacker trends we’ve seen and how Proton Mail can help you stay ahead of them.
Phishing-as-a-service
You’ve probably heard of software-as-a-service — cloud-based software like Slack, Canva, or Proton that you pay for with a subscription. Well, criminal organizations don’t want to be left out of a profitable business model. One such enterprise has launched Caffeine, a “phishing-as-a-service” platform that helps low-skilled hackers launch phishing attacks to steal login credentials.
The platform currently targets Microsoft 365 users(nueva ventana) by luring them to click on a phishing link and enter their username and password into a highly convincing fake login page. The phishing email and fake login page look like this:
How Proton protects you from phishing-as-a-service
Proton Mail users are currently safe from this attack because the platform only targets Microsoft 365 accounts. However, this kind of software is likely to become more common and could eventually target Proton Accounts. If that happens, you will have multiple layers of defense:
First, the attack would likely trigger our PhishGuard filter, which flags potential phishing attacks with a red banner. Here’s a recent one sent to a Proton Mail account claiming to be an official communication from us. (There are several other red flags in this one, including the unknown email address, the unspecified recipient field, the low-quality email contents, and the lack of an Official badge.)
If the phishing attack still evades detection, there are two other lines of defense. First, you can enable link confirmation(nueva ventana), which displays the link you’re about to visit and asks you whether to proceed.
And finally, if you still somehow get tricked into entering your username and password into a fake login page, the hackers will not be able to access your data if you have two-factor authentication enabled(nueva ventana). 2FA is a must for all your accounts to prevent unauthorized access.
QR code attacks
QR codes present a unique challenge for cybersecurity because they are ubiquitous and often harmless — but they’re nearly impossible to verify as legitimate prior to scanning them. Worse, hackers are now sending emails containing only embedded images and no text. Because spam filters often depend on text scanning, these can evade detection. One of the images is a QR code that points to a fake login page or a phone number to call, leading to a social engineering scam.
Proton’s custom-built PhishGuard system(nueva ventana) is designed to detect and flag potential threats without relying on scanning the contents of emails (since we can’t see your messages because of end-to-end encryption). This means image-based attacks are no more effective in Proton than any other phishing emails. PhishGuard is 70% more effective than widely used spam filters. Using machine learning, it updates automatically based on your feedback (for example, if you mark an email as spam or report phishing(nueva ventana)). On top of that we have a team of mail delivery specialists working 24/7 to analyze and adjust our systems to catch new phishing and spam campaigns that could be missed by our automatic detection.
Additionally, Proton Mail also offers a security setting that lets you turn off loading images(nueva ventana) by default. If an email is mostly or entirely composed of embedded images, this should alert you the email is likely phishing.
In general, you should never scan QR codes if you aren’t sure where they came from, and you should always check the URL of the page you land on afterward. Downloading apps from QR codes is also risky. It’s best to get apps from your app store.
Multi-factor authentication (MFA) fatigue
The increasing popularity of two-factor authentication has been tough on hackers. With 2FA enabled, stealing usernames and passwords isn’t enough. They need to get past your authenticator app or one-time passcode, too.
One emerging way hackers do this is through an attack called multi-factor authentication (MFA) fatigue. This technique targets authenticator apps with push notifications. After obtaining a victim’s login details, they try logging in multiple times in a row, triggering a barrage of requests to approve access. After a while, some people may click accept to make the notifications go away. This attack has led to high-profile breaches, such as the LastPass data breach(nueva ventana) earlier this year.
How Proton protects against MFA fatigue attacks
Proton Mail doesn’t support push notification 2FA. In fact, our password manager Proton Pass(nueva ventana) doesn’t use push notifications either, relying on auto-filling a one-time password instead. So MFA fatigue attacks are impossible in Proton.
If you ever see a 2FA request you didn’t authorize, change your password for that account.
Final thoughts
Cybersecurity is always an arms race, and this article only covers a fraction of the attacks that Proton Mail defends our community from. But being a community-supported company gives us an edge because we don’t have to worry about developing products for advertisers. Nothing distracts us from our top priority of protecting your data.
This advantage has led to groundbreaking innovations, such as Proton Sentinel(nueva ventana) and the world’s first end-to-end encrypted email forwarding feature. These are or will soon be available if you have a Proton Visionary, Lifetime, Family, Unlimited, Business, or Pass Plus plan.
But you don’t have to have a paid account to benefit from our essential security tools, such as those listed above. Sign up for a free Proton Account to start taking advantage of better security for your data.