![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}
paserbyp
Proton Mail, an encrypted email messaging service, allegedly disabled the accounts of two journalists investigating cybersecurity breaches in the South Korean government.Proton is commonly used by people seeking highly secure communications and has been blocked in countries with strict internet censorship, like Russia and Turkey. Many news organizations use the service to manage tips.
The two journalists were working on an article about an “APT,” or advanced persistent threat, that had penetrated computer networks at numerous vital government agencies in South Korea, including the Ministry of Foreign Affairs and the military’s Defense Counterintelligence Command.
The journalists had set up a new Proton Mail account to manage "responsible disclosures" for the article, which is where ethical hackers disclose vulnerabilities to organizations. A week after the article was published, the journalists found the account they had set up for responsible disclosure notifications had been suspended. A day later, one of the journalists allegedly found that his personal Proton Mail account had also been suspended.
Phrack, a hacker-focused magazine that published the article, attacked Proton in an X post, asking, “Why are you cancelling journalists and ghosting us?”.
In a reply on X, Proton’s official account said the company was “alerted by a CERT that certain accounts were being misused by hackers in violation of Proton’s Terms of Service,” leading to their disabling. A CERT is an official government agency working on cybersecurity, such as the US Computer Emergency Readiness Team (US-CERT) in the Department of Homeland Security.
Proton’s CEO later announced that the accounts were reinstated, following another post(https://x.com/ProtonPrivacy/status/1965828424963895605) by the company that said the company does “stand with journalists,” but that it “cannot see the content of accounts and therefore cannot always know when anti-abuse measures may inadvertently affect legitimate activism.”
The relationship between encrypted messaging services and governments continues to be a big issue in 2025. Last month, the UK government dropped its mandate requiring Apple to provide backdoor access to Americans' iCloud data.
