• RBG@discuss.tchncs.de
    link
    fedilink
    English
    arrow-up
    0
    ·
    7 months ago

    They provided the backup e-mail address

    Upon receiving the recovery email from Proton Mail, Spanish authorities further requested Apple to provide additional details linked to that email, leading to the identification of the individual.

    Just in case anyone thinks they decrypted mails and handed them over, nope. I hadn’t thought about that “settings” are not encrypted. Guess if you want to stay anonymous you shouldn’t add your private mail address in there as a backup.

    • Alk@lemmy.world
      link
      fedilink
      English
      arrow-up
      0
      ·
      7 months ago

      Yeah. Even if they couldn’t hand over recovery emails, having a personal email as a backup to a “private and sensitive” email account is bad practice.

      • BlushedPotatoPlayers@sopuli.xyz
        link
        fedilink
        English
        arrow-up
        0
        ·
        7 months ago

        But what do you do if that field is needed? A throwaway address won’t work as it’s easy to recreate. Buy your own domain and run a server?

        • /home/pineapplelover@lemm.ee
          link
          fedilink
          English
          arrow-up
          0
          ·
          7 months ago

          I put the Simplelogin email alias as my backup mail. Which forwards mail to my proton, so I guess it isn’t really a backup. Even more so if you realize I need to sign into simplelogin with my protonmail account and protonmail owns Simplelogin.