NordVPN hacked: not a hack is a violation the company reports

NordVPN announced that one of its servers was breached in March 2018, exposing habits of customers who used the VPN service to not expose their personal data. NordVPN

Η NordVPN αναφέρει ότι ο διακομιστής που παραβιάστηκε βρίσκεται στη Φινλανδία και δεν περιέχει αρχεία καταγραφής δραστηριότητας (logs), ονόματα χρηστών ή κωδικούς πρόσβασης. Ωστόσο, ο επιτιθέμενος θα μπορούσε να δει την δραστηριότητα των χρηστών στο internet κατά τη διάρκεια μιας σύνδεσης, αν και σύμφωνα με την the content of the websites would likely be encrypted.

In recent years, NordVPN has become very popular on the internet due to a very aggressive advertising campaign. You will often see NordVPN ads and publications. Everyone claims that it is a super duper safe company, although we all know there is no online security.

The company promotes it of, as a very reliable way to keep your online life private, but hacking the server may confuse new potential customers.

Of course the company is trying to downplay the fact. Tom Okman, a company executive, told TheVerge:

Attackers could have compromised just this server to monitor the traffic and see which ones they browse and not the content, only the webpage – for a limited time, and only in this isolated area.

Okman said that NordVPN usually changes the server that each user logs on to every five minutes, but users can choose the country to which they connect. This means that users would have been affected for minimal periods of time.

Details of the breach began circulating over the weekend by security investigators. In one Publication on the company's blog this morning, NordVPN said it had been aware of the breach for "a few months", but did not immediately disclose the problem because it wanted to control other systems…

According to the company, the violation was limited to a single server.
The server was vulnerable between January 31 January 2018 and March 20 2018, but NordVPN believes it was breached only once, in March.

No one else was affected by the attack data, the company reports and that it stopped working with the company that gave them the specific server.

Can a breach be as painless as the company describes?

Okman says the company does not believe that information has been leaked, and that NordVPN will inform its customers of the email infringement, something it should have done months ago.

"I wouldn't call this a hack", Said Okman. "It's an isolated security breach - hack is a very powerful word in this case. "

______________

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.100 registrants.

Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).