The Broadband Guide
SG
search advanced
 Username:
 Password:
Register
 forgot password?

NordVPN has been hacked

2019-10-21 17:25 by
Tags:

 

Popular VPN service provider NordVPN announced today that one of its servers had been hacked. Rival VPN providers VikingVPN and TorGuard may be affected as well.

The incident took place in March 2018, when an unauthorized person accessed a server NordVPN rented from a third-party data center in Finland. They exploited an "insecure remote management system" that the data center provider left in place. NordVPN wasn't aware that such a system existed.

Although the Finnish data center quietly patched the vulnerability in the same month, the hacker stole a NordVPN Transport Layer Security (TLS) key, which was used for encryption over the company's website and extensions. However, the key was never used to encrypt user traffic on the VPN server, the company told PCMag.

NordVPN has a strict policy against keeping user traffic logs, so "the server itself did not contain any user activity logs," it said. "None of our applications send user-created credentials for authentication, so usernames and passwords couldn't have been intercepted either."

Read more -here-

 

  Post your review/comments
    rate:
   avg:
News Glossary of Terms FAQs Polls Cool Links SpeedGuide Teams SG Premium Services SG Gear Store
Registry Tweaks Broadband Tools Downloads/Patches Broadband Hardware SG Ports Database Security Default Passwords User Stories
Broadband Routers Wireless Firewalls / VPNs Software Hardware User Reviews
Broadband Security Editorials General User Articles Quick Reference
Broadband Forums General Discussions
Advertising Awards Link to us Server Statistics Helping SG About