|
Dear Proton User,
We have recently experienced a security
incident that may potentially involve your
Proton account information. We believe the
actual impact of this incident is limited;
however, action is required from you to
ensure your account remains secure.
What happened
An unauthorized third party accessed a
limited subset of customer data from one of
our databases. While we quickly contained
the incident, information that was accessed
included emails, usernames, and securely
hashed passwords.
Any account passwords that may have been
accessed were securely hashed, in accordance
with best practices, meaning they cannot be
read by a third party. Out of an abundance
of caution, we recommend you immediately
reset your password by visiting
https://proton.me/reset?q=sn28dm10ansid71bs91akd91mal
.
Rest assured that we do not store credit
card data on our servers, so this
information was not compromised in this
incident. You can reset your password at any
time and will be prompted to do so as soon
as you log in.
What we're doing
We've already addressed the method that this
third party used to gain access to the
system, and we're undergoing additional
reviews to ensure that the security of all
of our systems is further hardened to
prevent future attacks.
What you must do
We kindly request that you reset your Proton
account password immediately by visiting the
above link. When doing so, there's a
checkbox to "Sign out connected devices
after password change," which we recommend
you enable. This will sign you out of all
your devices for your security, and you will
then need to sign back in with your new
password. We understand that this means a
little more work for you, but it will
provide additional security to your account.
Additional Security Measures You Can Take
We remind you that
no one at Proton will ever reach out to
you over email to ask for a password or
credit card number for payments.
For further account protection, we also
recommend enabling two-factor authentication
on your Proton account if you haven't
already done so.
Lastly, we sincerely apologize for any
inconvenience this situation may cause you.
We take pride in our security systems, which
helped us quickly detect this incident, and
we want to assure you that we are working
swiftly to prevent potential future
incidents from occurring.
Thank you,
The Proton Team
|
