Proton

7430 readers

11 users here now

Empowering you to choose a better internet where privacy is the default. Protect yourself online with Proton Mail, Proton VPN, Proton Calendar, Proton Drive. Proton Pass and SimpleLogin.

Proton Mail is the world's largest secure email provider. Swiss, end-to-end encrypted, private, and free.

Proton VPN is the world’s only open-source, publicly audited, unlimited and free VPN. Swiss-based, no-ads, and no-logs.

Proton Calendar is the world's first end-to-end encrypted calendar that allows you to keep your life private.

Proton Drive is a free end-to-end encrypted cloud storage that allows you to securely backup and share your files. It's open source, publicly audited, and Swiss-based.

Proton Pass Proton Pass is a free and open-source password manager which brings a higher level of security with rigorous end-to-end encryption of all data (including usernames, URLs, notes, and more) and email alias support.

SimpleLogin lets you send and receive emails anonymously via easily-generated unique email aliases.

founded 2 years ago

MODERATORS

ProtonPrivacy@lemmy.world

alex_herrero@lemmy.world

Nelizea@lemmy.world

Proton Pass is not safe? (lemmy.world)

submitted 1 day ago* (last edited 1 day ago) by IronJumbo@lemmy.world to c/protonprivacy@lemmy.world

19 comments fedilink hide all child comments

This community is reportedly official, but I see no activity of the Proton Team here :(

Can the Proton Team comment on this test?

Source article:

https://venaksecurity.com/2025/06/04/keeper-is-the-only-password-manager-that-protects-against-infostealers/

Edit:

I am not associated with any tested company or this blog.

I am an ordinary user of all Proton products since his birth and I love him.

Because the test looks credible, I just want an expert from Proton to dispel my doubts or honestly confirm the problem.

I am aware that the test may be a product promotion, but the question is: can the threat be real for the Proton Pass?

you are viewing a single comment's thread
view the rest of the comments

[–] rumba@lemmy.zip 1 points 1 day ago

The memory protection attempts on keeper versus the rest seem pretty legit.

The online protection is legitimate although if you're required to do an online auth before you unlock a vault that means you have no ability to unlock your vault if you're not online. So if you were having internet problems you might not be able to get into your router. Personally I think 2FA or yuby key is more than enough for that to allow offline authentication.

The claim of browser extension protection is a little nebulous. They specifically call out a single memory related browser feature and say that no one else checks against any browser extension attacks.

The whole document is definitely marketing slop but it's not without some truth. Yeah, you can read unlock vaults through other programs. But you can also keylog from other programs, do 2fa interception attacks.

They're putting a f*** ton of marketing out there to the point it's hard to find articles that aren't biased. Almost nothing out there even talks about the cons of the being significantly more expensive than the rest. What I was able to find with user reviews as their autofill is wanting, trying to put credit cards into web pages is inconsistent at best. And most places that compared them even against bitwarden shows bitwarden handily over usability issues

Honestly, I think using a zero knowledge password manager with built 2FA is sufficient enough right now.