Breaking news

In the interconnected cyber world there are a growing number of platforms providing secure encrypted email, VPN, cloud storage, and other services. However, every time a new company appears eventually the following phrase will pop up: "Don't use this service! It is hosted in a Fourteen Eyes country!" But who are the Fourteen Eyes countries? And most importantly, what kind of privacy risks are taken when using services hosted in the 14 eyes?

In its draft law to combat child sexual abuse, the EU Commission describes one of the most sophisticated mass surveillance apparatuses ever deployed outside China. Even if an AI scans your private messages, it remains warrantless mass surveillance of everyone. Once again, the EU Commission is using child protection as a pretext to introduce mass surveillance without any reason.

On April 27th a hard-to-execute Cross-Site Scripting (XSS) vulnerability has been reported to us. This has now been fixed. We thank the user reporting the vulnerability. The vulnerability only affected Tutanota when used in Firefox and it needed several steps by the user to make it potentially executable.

Everybody knows them, everybody hates them: cookie banners. In a landmark ruling, the Belgian DPA has declared central part of the consent given via cookie banners as illegal and not compatible with the GDPR. Will this finally end the annoying task of clicking on cookies?

All Tutanota apps are Libre software to provide an open source email alternative to Gmail, Yahoo, GMX and others. To us this includes to publish our Android app on F-Droid. Unlike other secure email providers, Tutanota does not use closed third party code - whether from Google or others - because we must be in full control of the open source code to offer maximum security and privacy. Our focus on open source and encryption combined with our deep respect for your right to privacy, makes Tutanota the best secure email service.