On July 24, investigative journalists at Bellingcat, which utilize ProtonMail to secure their communications, were targeted by a sophisticated phishing attack that attempted to steal their credentials to gain access to their ProtonMail accounts. Emails were sent to the targeted users claiming to be from the ProtonMail team, asking the targets to enter their ProtonMail login credentials.
The phishing attack did not succeed because of the vigilance of the targets and certain anti-phishing measures that ProtonMail has put in place due to the increased security needs of many of our users. A phishing attack targets users of a service and does not directly target the service itself. Some articles have incorrectly claimed that ProtonMail was hacked or compromised, but a phishing attack does not imply a compromise of the service in question.