ProtonBlog(new window)
Subscribe by RSS

Proton Mail BETA v1.09 Release Notes

Jason Stockman(new window)

Share this page

We are happy to announce the release of Proton Mail v1.09. As usual, please completely clear your browser cache(new window) to make sure you load the latest version of Proton Mail. Among all the security researchers who helped us, we’d like to give special thanks this time to all participants in the first Proton Mail Hackathon for security tests for this Version 1.09 release.

New Features

  • Replied and Forwarded message is indicated.
  • Update encoding scheme to better support some foreign languages.
  • Reminder when leaving compose page without saving a draft.
  • Rearrange the message operation menu.
  • Attachments will be displayed if they are plain text of html text.
  • Add a new form field on sign up to allow user to add notification email to reset login password.
  • Add two extra security headers to enhance XSS protection.

Bug Fixes

  • Quotes in message title are now appropriately displayed.
  • The page will stay the same after enter Mailbox Password in the new opened page, instead of always redirecting to inbox.
  • Fixed the number of new messages in notification email.
  • Fixed a rare case which leads to ‘inside_not_exist’ error

Known Issues

  • Multiple attachments not properly supported.
  • Mobile and Tablet not yet fully supported.
  • Attachments are not encrypted.

Security Fixes

  • Session Cookies are set to HttpOnly. (credit to ElectronMail team in Proton Mail’s hackathon)
  • Security Headers updated for all pages to be more strict.
  • XSS attack on Contacts page (credit Prakhar Prasad @prakharprasad)
  • Enhanced brute-force attack protection.
Secure your emails, protect your privacy
Get Proton Mail free

Related articles

passwordless future
With the advent of passkeys, plenty of people are predicting the end of passwords. Is the future passwordless, though? Or is there room for both types of authentication to exist side-by-side?  At Proton, we are optimistic about passkeys and have int
At Proton, we have always been highly disciplined, focusing on how to best sustain our mission over time. This job is incredibly difficult. Everything we create always takes longer and is more complex than it would be if we did it without focusing on
is icloud keychain safe
If you’re on any Apple device, you’re familiar with the iCloud Keychain, the Apple password manager. It’s a handy tool that stores passwords for you and helps you manage your logins.  For a program that stores all your most sensitive data in one pla
We recently announced that Proton Pass now supports passkeys for everyone across all devices. Universal compatibility is a unique approach to implementing passkeys, unfortunately. Even though passkeys were developed by the FIDO Alliance and the Worl
How to upload and share private video
Your private videos are for your eyes only. However, not all cloud storage services are good at storing videos securely, let alone privately. In this article we explain what you can do to keep file sharing companies from having access to the videos y
Many email services, citing security reasons, require a phone number for identity verification. This creates an unfortunate paradox in which you must give up a highly sensitive piece of personal data to Big Tech. But there are simple ways to create
Can you password-protect a folder in Google Drive?
Protecting a folder with a password is a simple yet effective way of securing files. You may wonder whether you can password-protect a folder in Google Drive. We explain what access controls Google Drive offers and what you can do to improve your sec