Could pgp keys not mitigate this?

They could. Definitely.

ya

Metadata is not encrypted and metadata tells a lot for example if you send emails with Hunter Biden or Putin 😂 .

Now now no need to bring in a valued customer of the drug business

This is another case of someone not using ProtonVPN and bad OPSEC.

Isn’t data encrypted from proton when you use their VPN?

Proton will log your VPN, you can never trust a VPN provider, they have to comply with legislation.

Mullvad runs from RAM memory so that they are unable to comply which they would and will if possible

If you’re using tor browser, can they see what you’re doing?

but they only provided the recovery email address right??...

If you use the Tor network no one can know what you are doing, neither can your ISP, only the Tor exit node knows what you are accessing but given Tor's onion layer system, the exit node also does not know where the packets are coming from and therefore who you are. That said, spy agencies have used statistical methods to try to de-anonymize people behind tor, but to give you an idea, with the first version of tor that only used 3 hops and refused circuits, it took about 3 months to figure out a possible target, now tor changes circuits constantly including making 6 hops on certain occasions.

That's what we know, but how are you sure they don't save the ips? even if you use their VPN, how are you sure they don't save the ips? I have been saying this for a long time, a private company can never offer privacy, privacy has to be defined in the protocol.

Good to know. I heard someone say there is a vulnerability with tor the longer your session lasts. I didn’t really understand what that meant. Have you heard of something like that?

This was in the old days, as I said, nowadays the circuits are constantly renewed. If you open a new tab a new circuit is generated, even in the same web eventually just generating another circuit and you can also renew it from a button. Tor like any protocol improves with time, and the pow protection that was added a few months ago has drastically reduced ddos attacks.

Thank you 🫡

Sorry one more question. Say I’m using a mobile wallet and I’m connected to a VPN. Can the VPN see what I’m doing? Like sending funds and to where? Or do they just see that I’m using the app and nothing else?

Say it with me folks: private companies cannot offer privacy, they will always be coerced by the government to betray their customer trust. The solution is open source software and not trusting, but verifying.

Welp, time to host your own mail server too.

The vpn will know the ip you connect to, basically that is the information they will have about you. If the ip is an electrum server then they will know that you are connecting to an electrum server but nothing more, although that is a lot of information.