this post was submitted on 21 Jun 2026
37 points (100.0% liked)

Proton

9382 readers
2 users here now

Empowering you to choose a better internet where privacy is the default. Protect yourself online with Proton Mail, Proton VPN, Proton Calendar, Proton Drive. Proton Pass and SimpleLogin.

Proton Mail is the world's largest secure email provider. Swiss, end-to-end encrypted, private, and free.

Proton VPN is the world’s only open-source, publicly audited, unlimited and free VPN. Swiss-based, no-ads, and no-logs.

Proton Calendar is the world's first end-to-end encrypted calendar that allows you to keep your life private.

Proton Drive is a free end-to-end encrypted cloud storage that allows you to securely backup and share your files. It's open source, publicly audited, and Swiss-based.

Proton Pass Proton Pass is a free and open-source password manager which brings a higher level of security with rigorous end-to-end encryption of all data (including usernames, URLs, notes, and more) and email alias support.

SimpleLogin lets you send and receive emails anonymously via easily-generated unique email aliases.

founded 3 years ago
MODERATORS
ProtonPrivacy@lemmy.world
alex_herrero@lemmy.world
Nelizea@lemmy.world
37
HELP : Is support@protonme.zendesk <mailto:support@protonme.zendesk> a legitimate Proton address or a potential phishing attempt? (lemmy.ml)
submitted 2 days ago* (last edited 2 days ago) by AuroraSine@lemmy.ml to c/protonprivacy@lemmy.world
19 comments fedilink hide all child comments
 

Peace be with you, Proton Community, 🌹

I was trying to find out which search engine Lumo uses in the background. To do this, I used the official contact form here: https://proton.me/support/contact?topic=lumo.

Unfortunately, I later realized that the official site lists "protonmail.zendesk", not "protonme.zendesk". The domain "protonme.zendesk" looks suspicious, and many sites online report it as a phishing attempt.

I have already taken security precautions on my end, but I want to be absolutely sure before I report this domain as malicious. Has anyone else seen this? Please let me know if you think this is phishing. And i hope you can answer my question about the search engine 😁

Thanks for the help.

you are viewing a single comment's thread
view the rest of the comments
[–] AmbitiousProcess@piefed.social 17 points 2 days ago (1 children)

It's legitimate.

Proton hasn't updated their official phishing advice page with the new domain, buuuuuuuuuuuuuuut you can see them suggesting someone contact them on the protonme.zendesk.com domain on their official App Store page (under the "the app changes fonts on internal website" review), and on their official Google Play Store page (has to be set to the turkish language in that URL otherwise the review they're responding to doesn't show up)

Unless BOTH accounts that manage their app distribution on both the Google Play AND Apple App Store were quietly compromised (and never found out), and used to post just a handful of replies to reviews with a phishing domain, I think it's safe to say it's legit and they just forgot to add it to their list of non-phishing domains yet.

[–] prettybunnys@piefed.social 6 points 1 day ago (1 children)

Proton hasn't updated their official phishing advice page with the new domain, buuuuuuuuuuuuuuut you can see them suggesting someone contact them on the protonme.zendesk.com domain on their official App Store page (under the "the app changes fonts on internal website" review), and on their official Google Play Store page (has to be set to the turkish language in that URL otherwise the review they're responding to doesn't show up)

This doesn’t exactly raise green flags.

[–] AmbitiousProcess@piefed.social 1 points 1 day ago (1 children)

As I said, unless their official app distribution accounts were both compromised without anyone ever finding out and raising the alarm, and used to spread just a couple fairly hard to normally find instances of that URL, I think it's a lot more likely they just.... forgot to add it.

The alternative is much less likely: that someone specifically targeted this user with a message that knew exactly what they put in Proton's official contact form on their official domain, but chose not to ask for any information and just provided an answer to the question and then left.

[–] prettybunnys@piefed.social 1 points 1 day ago

forgot to add it.

Yeah. This type of stuff isn’t a great look. Carelessness from a company that’s supposed to protect privacy.

That’s what I’m saying.