I am retdoing my whole security and privacy strategy since i had a social media hack a few weeks ago.
I am setting everything up in a way that i hopefully won’t have to worry about privacy/security for the next 10 years.
I am debating wether to use a simple login alias for every single account i have, or to use a handful of Proton Aliases (there is a max of 15 allowed in the premium account vs unlimited in simplelogin).
They are both good ideas, however:
Concerns of simplelogin:
- I just realized their databases are not encrypted. So in the event of someone gaining access to their servers, a hacker, their founders, an employee, or even a government, it would be possible to see exactly to which services i am registered, each of my crypto accounts, each of my social accounts, etc one by one.
Pros of SimpleLogin:
- I can create a different login for every website, so if any website is ever compromised, that credential is completely useless anywhere else.
Concerns of ProtonMail:
- There is a limit of 15 aliases, so i cannot use a new alias for each account.
- My main account would be exposed as a target for hacking. As every alias in proton, can be used for log into the main account (though this is unlikely with 2FA). In Simplelogin, an alias can be used for nothing.
Pros of protonmail:
- Full end to end encryption. Meaning founders, employees, governments, cannot read what is inside the mail account and therefore not know where i am registered. (unlike simplelogin)
A last strategy would be to do a mix: Simplelogin for majority of the accounts, and proton for the important accounts (crypto with KYC for example, and major socials). And for “less important” accounts keep the simple login.
So far i started doing everything with simplelogin, being forwarded to proton. But now i am thinking if wouldn’t be better off by just using proton directly.
Can someone tell me if i am missing any pros/cons to consider here? what would you do and why?