REPORTAGE: Proton’s Privacy Problem: Disturbing DNS Findings Raise Serious Red Flags

Weeks ago, CyberInsights uncovered serious security vulnerabilities in Proton’s infrastructure. Rather than addressing the issues, Proton responded with hostility and suppression—an unusual reaction for a company built on privacy and transparency.

This raises a crucial question: Why would a security-first company react this way? The answer may be more alarming than expected.

Proton’s Encryption Claims vs. Reality
Proton prides itself on end-to-end encryption and zero-access security, assuring users that not even Proton can access their emails. However, our investigation revealed multiple security lapses, including:

– Insecure DNS records
– Unprotected servers

A troubling connection to Yandex—Russia’s largest search engine
Why Is Yandex Inside Proton’s Infrastructure? Our findings show Yandex is embedded within Proton’s DNS records. This is deeply concerning, given Yandex’s well-documented ties to data-harvesting and intelligence operations.

Negligence or Intent?
Proton’s Response Is Telling Rather than fixing these security risks, Proton chose silence and suppression. For a company that markets itself as a leader in privacy, this response raises a pressing question for users:

🔹 Can you really trust Proton with your data?

The evidence suggests otherwise.

Stay Secure
What Small Businesses Should Do Next. If your business relies on Proton for secure communication, we strongly recommend:

✅ Conducting a security audit of your email provider
✅ Exploring alternative encrypted email solutions
✅ Following CyberInsights for the latest security intelligence

🛡 Your privacy matters. Don’t let questionable security practices put your business at risk.