NordVPN's a popular tool that many people turn to for keeping their shit private while the plumb the depths of the Interwebz. It's available to use with a number of different operating systems. While I'm not fond of what I found while writing about them a few years back (for the record, I rely on ProtonVPN for my online privacy needs) The service is good enough for a whole lot of people.
Or at least it was. Because it's been hacked.
The admission comes following rumors that the company had been breached. It first emerged that NordVPN had an expired internal private key exposed, potentially allowing anyone to spin out their own servers imitating NordVPN.
...NordVPN told TechCrunch that one of its data centers was accessed in March 2018. “One of the data centers in Finland we are renting our servers from was accessed with no authorization,” said NordVPN spokesperson Laura Tyrell.
The attacker gained access to the server — which had been active for about a month — by exploiting an insecure remote management system left by the data center provider; NordVPN said it was unaware that such a system existed.
NordVPN did not name the data center provider.
So, that sucks.
According to TechCrunch, the infiltrated server didn't contain any user activity logs, which is nice. Additionally, NordVPN's spokesperson swears that there's no way that a motivated attacker could have intercepted usernames or passwords. This of course, is like saying that you shit the bed, but the pillows are fine. NordVPN goes on to admit that the information snagged could, however, be used to initiate a man-in-the-middle attack.
Image via Pixabay
Most U.S. adults answer fewer than half questions correctly on digital know-how quiz, and many struggle with cybersecurity and privacy
The administration of Donald Trump is pulling $270 million from the Department of Homeland Security, including $155 million of FEMA disaster relief funding, to pay for all migrant concentration camps, according to DHS and a leading congressional Democrat. Money will also reportedly be taken away from the budget for planned upgrades to the National Cybersecurity […]
Friends, you’re going to wish you were still making the scene with a magazine after reading this sentence: Google’s web trackers are all up in your fap time and there’s pretty much nothing (except maybe using a more secure browser like Firefox, read up on cyber security tips from the EFF, refusing to sign into […]
The good news: Software like Adobe Premiere Pro, Camtasia and Final Cut Pro has opened up a ton of possibilities for desktop videographers. On the other hand, their use is so widespread that you have to be an expert in them before you can even think about a career in the field. That’s a requirement […]
There are a lot of high-tech drones and RC planes flooding the market lately, and the innovations are coming so fast on each new iteration, most of them forget one crucial thing: Flying these is supposed to be fun. Here’s an alternative that keeps that ethic firmly in mind: The Moskito Smartphone-Controlled Plane. This thing […]
There are few intellectual exercises better than a good game of chess against a capable opponent, which is why a lot of old hands at the gameplay it online. But there’s still nothing like the tactile thrill of moving a knight into checkmate. (Or sweeping the pieces off dramatically when you lose.) That’s why we’re […]