Nord VPN confirms it was Hacked

godhandiscen

godhandiscen

There are millions of whiny 5-year olds on Earth, and I AM THEIR KING.
techcrunch.com

NordVPN confirms it was hacked | TechCrunch

NordVPN, a virtual private network provider that promises to "protect your privacy online," has confirmed it was hacked. The admission comes following
techcrunch.com techcrunch.com

For its part, NordVPN has claimed a "zero logs" policy. "We don't track, collect, or share your private data," the company says.

But the breach is likely to cause alarm that hackers may have been in a position to access some user data.

NordVPN told TechCrunch that one of its data centers was accessed in March 2018. "One of the data centers in Finland we are renting our servers from was accessed with no authorization," said NordVPN spokesperson Laura Tyrell.

The attacker gained access to the server — which had been active for about a month — by exploiting an insecure remote management system left by the data center provider, which NordVPN said it was unaware that such a system existed.

NordVPN did not name the data center provider.

"The server itself did not contain any user activity logs; none of our applications send user-created credentials for authentication, so usernames and passwords couldn't have been intercepted either," said the spokesperson. "On the same note, the only possible way to abuse the website traffic was by performing a personalized and complicated man-in-the-middle attack to intercept a single connection that tried to access NordVPN."

According to the spokesperson, the expired private key could not have been used to decrypt the VPN traffic on any other server.

NordVPN said it found out about the breach a "few months ago," but the spokesperson said the breach was not disclosed until today because the company wanted to be "100% sure that each component within our infrastructure is secure."
Click to expand...
 
The entire point of VPN's is privacy lol. Might as well use TOR at this point.
 
Don't use budget VPNs lol... its like getting a budget security system for your home and expecting it do anything.
 
One of their contractors was hacked, i.e a data center. And they failed to inform NordVPN. Not entirely NordVPN's fault.

I'd sign up to NordVPN now, since they are now guaranteed to be the most secure VPN on the planet. Nothing like a good scare to get the security juices flowing.
 
I can't see VPNs being a reliable thing for much longer. Ain't no major governments gonna stand for actual real privacy in this day and age.
 
This part is damning

NordVPN said it found out about the breach a "few months ago," but the spokesperson said the breach was not disclosed until today because the company wanted to be "100% sure that each component within our infrastructure is secure."
Click to expand...

They knew for a few months and didn't tell their paying customers.
 
It does what I need it to do - lets me get to stuff blocked in the UK. Privacy-wise, I have other measures in place, so that's a non-issue for me.
 
VPN is for weaklings, own up like a man. Yeah, I looked that up, so what, you wanna go?

I use PIA. I've never had issues with their services.
 
youtube startup channels when they hear this news:

66182da121ea86832ec2965a8e7a7681.jpg
 
n0razi said:
Off the top of my head, ExpressVPN and AirVPN (I use this personally)
Click to expand...
Wouldn't a good one be a provider who has proven they're not logging anything (No Logs Policy)? This is the reason why, when I need one, I pick PIA over everything else.

Normally I wouldn't touch any VPN sitting in a five, nine or fourteen eyes country, but PIA is the only provider who has proven to not log anything when they had to go to court over some hacker who used their service.

Private Internet Access' "No-Logging" Claims Proven True Again in Court * TorrentFreak

VPN provider Private Internet Access, which has a strict no-logging policy, has proven once again that it is unable to link online activities with a user's identity. The conclusion, which was revealed as part of a hacking trial in San Jose federal court, is the second time that the provider's...
torrentfreak.com torrentfreak.com
 
Only VPN I ever used was PIA. Because my ISP decided to throttle my downloads and even YT speed. It's all working as usual now so I don't need it anymore. But it's like someone already said here ITT. Your information is never 100% secure.
 
Endless Fluff said:
Wouldn't a good one be a provider who has proven they're not logging anything (No Logs Policy)? This is the reason why, when I need one, I pick PIA over everything else.

Normally I wouldn't touch any VPN sitting in a five, nine or fourteen eyes country, but PIA is the only provider who has proven to not log anything when they had to go to court over some hacker who used their service.

Private Internet Access' "No-Logging" Claims Proven True Again in Court * TorrentFreak

VPN provider Private Internet Access, which has a strict no-logging policy, has proven once again that it is unable to link online activities with a user's identity. The conclusion, which was revealed as part of a hacking trial in San Jose federal court, is the second time that the provider's...
torrentfreak.com torrentfreak.com
Click to expand...
Doesn't Nord VPN have no logs policy as well?
 
MiyazakiHatesKojima said:
Doesn't Nord VPN have no logs policy as well?
Click to expand...
Yes, ExpressVPN has a No Logs Policy as well, but my point was that PIA has proven itself in front of a court that it really doesn't do any logging. For everyone else it's kind of blind trust.
I'm not saying that NordVPN or ExpressVPN and any other VPN with a No Logs Policy is not trustworthy, NordVPN would be my 2nd choice.
 
Endless Fluff said:
Yes, ExpressVPN has a No Logs Policy as well, but my point was that PIA has proven itself in front of a court that it really doesn't do any logging. For everyone else it's kind of blind trust.
I'm not saying that NordVPN or ExpressVPN and any other VPN with a No Logs Policy is not trustworthy, NordVPN would be my 2nd choice.
Click to expand...
Yeah no... It's not blind trust. NordVPN, among others, have been independently audited;

restoreprivacy.com

Best No-Logs VPNs: Proven and Verified (September 2025)

This guide examines the best no logs VPN services that are verified and proven. These are the top no logs VPN services for online privacy.
restoreprivacy.com restoreprivacy.com
 
Ascend said:
Yeah no... It's not blind trust. NordVPN, among others, have been independently audited;

restoreprivacy.com

Best No-Logs VPNs: Proven and Verified (September 2025)

This guide examines the best no logs VPN services that are verified and proven. These are the top no logs VPN services for online privacy.
restoreprivacy.com restoreprivacy.com
Click to expand...
So ExpressVPN is the safest when it comes to no logs policy? I'm still suspicious of these services, just like Tesseract Tesseract has mentioned before as well.
 
Ascend said:
Yeah no... It's not blind trust. NordVPN, among others, have been independently audited;

restoreprivacy.com

Best No-Logs VPNs: Proven and Verified (September 2025)

This guide examines the best no logs VPN services that are verified and proven. These are the top no logs VPN services for online privacy.
restoreprivacy.com restoreprivacy.com
Click to expand...
oh, thanks. While I still see a difference between getting dragged to court and undergoing an independent audit, I didn't know that some providers do this to prove they're not logging.

However what I find most interesting about this is that ExpressVPN and others run their servers in RAM. This is great to know for the future.
 
Last edited:
Who didn't think this would happen though? lol the security private network that advertises on the angry video game nerd on youtube wasn't up to snuff? Shocking.
 
What are legit use cases you guys use vpn for? I'm trying to think why everyone cares so much outside of the illegal/pirate stuff which i have no sympathy for.

like I know We use it at work to securely connect to internal systems, that's a legit use.
 
Last edited:
Pagusas said:
What are legit use cases you guys use vpn for? I'm trying to think why everyone cares so much outside of the illegal/pirate stuff which i have no sympathy for.

like I know We use it at work to securely connect to internal systems, that's a legit use.
Click to expand...
Would you consider an Xbox Live Gold account from somewhere that is not officially supported illegal, even if you pay for it like everyone else?
 
Ascend said:
Would you consider an Xbox Live Gold account from somewhere that is not officially supported illegal, even if you pay for it like everyone else?
Click to expand...
Not illegal but against the terms of services, yes. Same with using it to see Netflix content from another region. Both those cases are "grey area" uses of it to bypass a legal agreement a company is trying to enforce. So yeah that stuff I don't count as a legit use.
 
Circumventing region locks for anything is a legit case use for a VPN.

Must be nice to live in a country were you can watch almost everything for free. I'm currently watching Blacklist, Grey's Anatomy and Supernatural (all for free with ads on NBC, CW and ABC), VPN costs me 40€ a year, watching these 3 shows close to US airdate via iTunes/Amazon/Google would cost me 110€, since you have to buy the whole season for 35-45€.

I'm watching quite a few shows over the year for free on US websites. I'd rather not pay 40€ for each of them... or be forced to wait for a year before they pop up on german streaming sites or even worse on cableTV.
 
You must log in or register to reply here.

Similar threads

Breaking: US Treasury says it was hacked by China
2
75
5K
Lord Panda replied
The hacker known as 4chan has been hacked and possibly murdered
2 3
100
8K
Sgt.Asher replied
Notorious image board 4chan hacked and internal data leaked
News 
6
1K
GudOlRub replied
Intelbroker now claims it hacked Apple
Business 
1
1K
T8SC replied
Moved to the UK from USA, what's a good VPN?
2
55
5K
notseqi replied
Top Bottom