37
Peace be with you, Proton Community, πΉ
I was trying to find out which search engine Lumo uses in the background. To do this, I used the official contact form here: https://proton.me/support/contact?topic=lumo.
Unfortunately, I later realized that the official site lists "protonmail.zendesk", not "protonme.zendesk". The domain "protonme.zendesk" looks suspicious, and many sites online report it as a phishing attempt.
I have already taken security precautions on my end, but I want to be absolutely sure before I report this domain as malicious. Has anyone else seen this? Please let me know if you think this is phishing. And i hope you can answer my question about the search engine π
Thanks for the help.
I'm struggling to figure out the phishing attempt here?
You contacted support through an official channel, then got a reply answering your question, and now we think its a phishing attack?
I personally don't think that address looks suspicious either? Both coming from the same .zendesk, one is just using mail vs me. But as Proton uses .me everywhere, I don't think it's sus.
Am I missing something here?
Hi. Thanks for writing back.
Honestly, I'm super confused. Because actually phishing is when they ask about your password and all that classic stuff. But no! I had a normal chat. I saw links, and thank God I didn't click them. But the biggest warning sign is the domain. I can't find this domain on the official Proton website: https://proton.me/blog/report-phishing-emails
My mail says: support@protonme.zendesk.com
but it should say: support@protonmail.zendesk.com.
According to Proton: "if an email claiming to be from us does not have this badge, then it is a phishing attack." So this must be a phishing attack.
I contacted Proton about four days ago, but they still haven't answered. So I think I'll try my luck here.
Props to you for double and triple checking! If I was to put money on it, I would say its fine, and just a good chance that Proton haven't updated their website/articles yet.
If you mean you contacted Proton four days ago in regards to this, then yeah good move to verify. Would be very interested to hear their response here if you're willing to share when it happens.
Also, just to clarify, there were more emails outside of the one you screenshotted? And these replies had links? Were these replies making sense and actually answering questions?
Hey, it was a long chat. This picture is just an example.
The answers were actually really good and made for perfect sense. They told me, "No, we don't use Google or Bing." Sometimes the replies were very short and simple, like: "No, we don't use them either."
Regarding the links, they were always formatted like this: Proton Mail (link to proton.me/mail/home) From: support@protonme.zendesk.com
But I didn't click on them.
I would be really sad if this turned out to be a fake email because I actually liked the answers. I love Mojeek. But this "me" vs. "mail" thing makes me really worry. I hope I'm wrong. Now I can just wait for Protons answer.
I don't really get how this could be a fake email when you initiated it from protons website.
I don't get the downvotes on this.
Worst case it's malicious. Best case it's misleading and confusing by Proton and subconsciously (unintentionally) training people to ignore it.
And when something real malicious happens customers possibly won't be as careful as they could be walking into a trap.
It's not good in any case from a professional perspective.