With over 300 different VPNs on the market – all promising to keep you secure and anonymous – how can you find the best VPN service for your unique needs? Sorting through all the noise is increasingly difficult with so many new VPNs coming online and dozens of “best VPN” websites recommending dubious providers.
In testing and researching hundreds VPN services over the past four years, I’ve found that most VPNs fail when put to the test. Here are three common problems:
- VPNs that leak IP addresses and/or DNS requests. IPv6 leaks and DNS leaks affect many popular VPNs and this can expose your identity, location, and/or browsing history to third parties.
- VPNs with broken features. While most VPNs offer a kill switch or some form of leak protection, I’ve found that often these features fail under certain test cases, such as when switching network interfaces or reconnecting with the VPN server.
- VPNs that share data with third parties. This is mostly a problem with free VPN services that collect data and sell it to third parties, thereby monetizing the user (never use a free VPN).
The goal of this best VPN report is to filter through all the noise and identify the most secure VPNs that passed all tests and meet the following criteria:
- Located in a good privacy jurisdiction (outside of 5/9/14 Eyes countries) to keep user data safe
- Passed all tests with no leaks found whatsoever (no IP address leaks or DNS leaks)
- Good performance throughout the server network (speed and reliability)
- High-quality VPN apps with all features working correctly
- Supports the OpenVPN protocol and strong encryption standards
- Offers a money-back guarantee (between 7 and 30 days)
- Trustworthy and well-established VPN provider with a good track record
If a VPN did not fulfill all the criteria listed above, it was not featured in this best VPN report. And when you apply this standard to all the VPNs on the market, there are very few that make the cut.
Which VPN service is best?
While there is no “one-size-fits-all” best VPN service that will be perfect for everyone, the VPN that performed the best in all categories of testing is ExpressVPN.
That being said, any of the VPNs in this report may be the best for your unique situation – it all depends on the needs of the user.
Testing criteria: Each VPN service in this guide was tested for IP address leaks, DNS leaks, connection issues, reliability, speed, and whether the features work correctly. Additionally, I also examined company policies, jurisdiction, logging practices, as well as the history of each VPN provider. The rankings of this list were based on a combination of all these factors.
Here are the 5 best VPN services for 2019 in rank order:
1. ExpressVPN – Great all-around VPN with excellent performance ($6.67/mo)
Jurisdiction
British Virgin Islands
Logs
No logs
Price
$6.67
In an overcrowded VPN market, ExpressVPN continues to stand out from the rest and remains the top recommendation at Restore Privacy. It is based in the British Virgin Islands and offers secure, user-friendly apps for all devices. Extensive testing for the ExpressVPN review found it to be very secure, with exceptional speeds and reliability throughout the server network.
ExpressVPN is among the best VPN services for privacy and security. Their no logs policies have been verified through real-world tests with a server seizure in Turkey (all customer data remained secure). ExpressVPN’s apps utilize strong AES 256-bit encryption and the highest standards for leak protection – the “network lock” feature.
ExpressVPN is also one of the best VPNs for streaming. Whether you are using a VPN with Kodi or streaming Netflix with a VPN, ExpressVPN offers great apps for streaming devices and high-capacity bandwidth for HD videos and downloads. Their customer service is also top-notch, with 24/7 live chat support and a 30 day money-back guarantee with all subscription plans. [Learn more >]
+ Pros
- User-friendly and very secure apps
- Exceptional speeds throughout the server network
- 30 day money-back guarantee
- Split tunneling feature (for Mac OS, Windows, and routers)
- Works with Netflix and other streaming services
- 24/7 live chat support
– Cons
- Slightly more expensive (but currently offering a 49% discount)
ExpressVPN Coupon
Sign up for the 12 month plan, and get 3 months FREE (49% Off)
Get 49% Off ExpressVPN
(Discount is applied automatically.)
… or read the ExpressVPN review for detailed test results.
2. Perfect Privacy – Premium VPN with advanced privacy features ($10.50/mo)
Jurisdiction
Switzerland
Logs
No logs
Price
€8.95
($10.50)
Perfect Privacy is a powerful VPN that gives you advanced online anonymity features and an unlimited number of device connections. It is a well-regarded VPN provider based in Switzerland that has earned high praise from the tech community.
Perfect Privacy is a 100% no logs and enforces no limits of any kind – unlimited devices and unlimited bandwidth. Their network is composed entirely of dedicated, bare-metal servers that offer fast speeds, high security, and lots of bandwidth (see real-time server bandwidth here). Like ExpressVPN, Perfect Privacy has also passed real-world tests that verified their no logging claims when one of their servers was seized in Rotterdam (customer data remained safe).
For features, they offer multi-hop VPN cascades, advanced firewall configuration options (DNS and IP leak protection), port forwarding, NeuroRouting, Socks5 and Squid proxies, obfuscation features to defeat VPN blocking (Stealth VPN), and a customizable TrackStop feature to block tracking, malware, and advertising. Perfect Privacy is one of the few VPNs offering full IPv6 support (you get both an IPv4 and IPv6 address).
The main drawback with Perfect Privacy is the Swiss price tag at about €8.95 ($10.50) per month. Additionally, these advanced features may be overkill for some users, especially if you are new to VPNs. But for those seeking the highest levels of online anonymity and security, Perfect Privacy may be worth the price. [Learn more >]
+ Pros
- Multi-hop VPN chains, up to 4 servers (self-configurable)
- Zero logs with an unlimited number of connections
- Dedicated bare-metal servers with full IPv6 support
- Full obfuscation support (Stealth VPN)
- Customizable firewall and port-forwarding options
- TrackStop filter (advertisement, tracking, and malware blocker)
– Cons
- Higher price
- Does not work with some streaming sites (such as Netflix)
Visit Perfect-Privacy.com
… or read the Perfect Privacy review for detailed test results.
3. NordVPN – Low-price VPN with great features
Jurisdiction
Panama
Logs
No logs
Price
$2.99
(with discount)
NordVPN is a popular no logs VPN service based in Panama. It performed well in testing for the latest update to the NordVPN review and offers very competitive prices. While the speeds can be somewhat variable, the latest speed test results were good with the servers I tested. To improve speeds, NordVPN has added hundreds of servers to their network, so there is more available bandwidth for users.
NordVPN is a great choice for privacy-focused users. Aside from the Panama jurisdiction and no-logs policies, NordVPN also provides advanced online anonymity features. These include double-hop VPN servers, Tor-over-VPN servers, and an ad-blocking feature called CyberSec.
NordVPN’s customer service is also quite good. They offer 24/7 live chat support directly through their website and many support guides and tutorials. Right now NordVPN is extending the 75% discount price exclusively for three-year plans. All subscriptions come with a 30 day money-back guarantee, allowing you to try the service risk free. [Learn more >]
+ Pros
- User-friendly and reliable apps
- 30 day money-back guarantee
- Double-hop VPN servers; Tor-over-VPN servers
- 24/7 live chat support
- No logs
- Works with Netflix and other streaming services
- Very competitive price at $2.99/month
- CyberSec ad-blocking feature
– Cons
- Variable speeds with some servers
NordVPN 75% Off Coupon
Get 75% off NordVPN (drops the price down to only $2.99 per month)
Get 75% Off NordVPN
(Discount is applied automatically.)
… or read the NordVPN review for detailed test results.
4. VPNArea – Good all-around VPN for privacy, security ($4.92/mo)
Jurisdiction
Bulgaria
Logs
No logs
Price
$4.92
VPNArea is a well-established, privacy-focused VPN service based in Bulgaria that has been operating since 2012. In the past year they have released new, updated VPN apps that are secure (no leaks) and user-friendly. VPNArea performed very well with excellent speeds in the latest round of testing for the VPNArea review.
For features, VPNArea offers ad-blocking DNS servers, advanced leak protection settings, and dedicated servers for Netflix, BBC iPlayer, and other streaming services. They are no logs and do not restrict torrenting traffic in any way.
VPNArea is one of the few providers that offer dedicated IP addresses in various countries around the world, as listed on their website. They also allow account sharing and permit six simultaneous connections per subscription. VPNArea continues to improve and remains an excellent choice for privacy-focused users. Check out their discount pricing for annual plans. [Learn more >]
+ Pros
- Great speed and reliability
- Works with Netflix, BBC iPlayer, and other streaming services
- Strong security features, with self-hosted DNS
- Ad blocking
- Dedicated IP addresses available
- 24/7 live chat support
– Cons
- Limited number of Netflix streaming servers (but still works well)
Visit VPNArea.com
… or read the VPNArea review for detailed test results.
5. VPN.ac – Fast VPN with great security, encryption ($3.75/mo)
Jurisdiction
Romania
Logs
Connection logs
(erased daily)
Price
$3.75
VPN.ac is a security-focused provider that is based in Romania. It was created by a team of network security professionals with an emphasis on security, strong encryption, and high-quality applications. Their network is composed entirely of dedicated, bare-metal servers that offer great performance, as seen in the latest speed tests for the VPN.ac review.
For features, VPN.ac offers double-hop VPN servers, numerous encryption options, obfuscation (stealth VPN), and great apps for all major operating systems and devices. VPN.ac’s apps are very well designed and come in both light and dark modes. In addition to the VPN, you can also use their secure proxy browser extension, which is available for Firefox, Chrome, and Opera browsers.
One minor drawback with VPN.ac is that they maintain connection logs for network security, as they explain on their website. The logs include basic connection data (no activity) and are automatically erased daily. Despite being a smaller service, this is a high-quality provider run by competent security professionals. [Learn more >]
+ Pros
- Dedicated bare-metal servers with self-hosted encrypted DNS
- Excellent speeds with plenty of available bandwidth
- Multi-hop (double VPN) server configurations (18)
- Obfuscation features with many different encryption options
- Secure proxy browser extensions
– Cons
- Minimal connection logs (but erased daily)
Visit VPN.ac
… or read the VPN.ac review for detailed test results.
How to find the best VPN (for you)
Choosing the best VPN service all comes down to determining which factors you consider the most important and then selecting the best fit for your situation. In other words, it’s a very subjective process, which is why there is no single “best VPN” for everyone.
Any of the VPNs in this guide may be the perfect fit for you.
Here are a few factors to consider when selecting the best VPN for your situation:
- Test results – How well does the VPN perform in testing? This includes both performance testing (speed and reliability) and leak testing (IP leaks and DNS leaks).
- Privacy jurisdiction – Where the VPN is legally based affects customer privacy. Many people avoid VPNs based in the US and other surveillance countries for this reason – see my guide on 5/9/14 Eyes and VPNs.
- Server network – Does the VPN have the server locations you want?
- Features – There are many different VPN features catering to different types of users. These include privacy features, leak protection, IPv6 support, ad blocking, and multi-hop VPN configurations.
- Streaming – Some people want to use their VPN to unlock geo-restricted streaming services, such as American Netflix (see the best VPN for Netflix). Some VPNs cater to streaming clientele, but others do not.
- Operating system – Most VPN services offer custom apps for all major operating systems and devices. You may want to check with the VPN provider if you have a special use case, such as using a VPN on a smart TV.
- Obfuscation – Obfuscation is a key feature if you are using a VPN in China, schools, work networks, or anywhere that VPNs may be blocked. However, if you are not in a restricted network situation, obfuscation is generally not necessary and may impact performance. (See the best VPN for China guide for a great selection of VPNs with built-in obfuscation features.)
There are many other factors to consider when selecting the best VPN for your needs – this list is just to help you get started.
What are the benefits of using a VPN service?
As we covered in the main VPN guide, there are many advantages to using a VPN.
Here are 10 different reasons for using a VPN:
- Surf the internet without revealing your real IP address and geo-location (online anonymity).
- Add an extra level of security by encrypting your internet connection.
- Prevent your internet service provider (ISP), third parties, network admins, and governments from spying on your online activities (thanks to encryption).
- Unblock websites and access content that is restricted to certain geographic locations.
- Torrent, P2P download, and stream media (such as Kodi) in safety.
- Bypass censorship by easily getting around regional restrictions.
- Save money on flights and other online purchases by changing your IP address (geographic location).
- Protect yourself from hackers anywhere you go – especially while using public WiFi connections in cafés, hotels, and airports.
- Protect your private data, such as bank passwords, credit cards, photos, and other personal information when online.
- Surf the internet with peace of mind.
A growing concern about online privacy is fueling the rise in VPN usage. In many countries, such as the US, UK, and Australia, internet service providers can legally record your browsing history and hand the data over to third parties. Regardless of where you reside, going online without a VPN leaves you exposed.
What is the best VPN for privacy and online anonymity?
Any of the VPNs in this guide will be good choices for privacy and security because they have all been thoroughly tested and found to be secure (no leaks). Furthermore, all of the VPNs in this guide utilize strong OpenVPN encryption standards that are currently considered unbreakable, even with quantum computer hacking abilities.
With that being said, there is one VPN service that really stands out in terms of advanced online anonymity and security features, and that is Perfect Privacy. Here are a few ways Perfect Privacy stands out from the crowd:
- Multi-hop cascades + NeuroRouting – Perfect Privacy gives you the ability to create multi-hop VPN cascades across up to four different servers in the network. This protects you against the possibility of a rogue data center logging traffic, targeted monitoring, and other threat scenarios. Additionally, the NeuroRouting feature dynamically routes all traffic through multiple hops in the server network, and can be used with any device (explained more here).
- TrackStop – TrackStop is more than just an ad blocker. It blocks 30,000+ tracking and advertisement domains, 45,000+ malware domains, 20,000+ phishing domains, and it can also be activated to filter out social media and Google domains, which also abuse your privacy.
- Powerful leak protection – Perfect Privacy’s Windows and Mac OS apps offer three different levels for the kill switch, which I tested for the Perfect Privacy review.
On the topic of privacy and security, you may also want to consider using a secure browser and other privacy tools to protect your online anonymity.
What is the best VPN for streaming?
Many people are turning to VPNs to access streaming content that is blocked or geo-restricted to certain areas. With a VPN, you can “tunnel” in to certain locations to access content, such as American Netflix or BBC iPlayer in the UK. VPNs are also useful for Kodi streamers looking to access blocked Kodi add-ons.
The best all-around VPN for streaming is ExpressVPN because it works with a wide range of streaming services, has excellent performance, and offers the best lineup of apps for all types of streaming devices – from Android TV boxes to tablets, computers, and phones. With ExpressVPN’s 24/7 live chat support, they can help you get everything setup correctly.
Here I am streaming American Netflix from my location in Europe while connected to an ExpressVPN server in the United States:
Here are a few additional VPN streaming guides:
Aside from unblocking content around the world, VPNs are also crucial for protecting yourself against ISP snooping and potential copyright issues when streaming or torrenting (see also the VPN for torrenting guide).
What devices work with a VPN?
A VPN can work with nearly any device that connects to the internet:
- Computers – Whether you’re running Windows, Mac OS, Linux, or even a Chromebook, you will be able to use a VPN on your computer. Installation and setup options will depend on the VPN service you go with.
- Phones and tablets – VPNs are also very popular on phones and tablets. Whether you are running Android or iOS, you will be able to use your VPN.
- Routers – When you install the VPN on your router, all the devices that connect to your router will be using the encrypted VPN tunnel – without the need to install VPN software on each device. The router will only count as one VPN connection under your subscription, even if there are numerous devices using the router’s encrypted VPN connection. There are some important considerations before you do this – see my popular VPN router guide for setup tips.
- TV boxes – Most TV boxes are built on Android. This means that you can install a VPN on your TV box using your VPN service’s Android app. Check with your VPN provider for instructions.
- Smart TVs – Whether or not you can use a VPN on your smart TV will depend on the type of smart TV you have and whether your VPN supports it. Android-based smart TVs can use an Android VPN app. Samsung smart TVs can be used with the ExpressVPN MediaStreamer feature.
- Fire Stick and Fire TV – VPNs can also be used on Fire Stick and Fire TV – see the guide for more information: Fire Stick VPN.
How can you use a VPN on your devices?
Generally speaking, there are three different ways to use a VPN on your devices:
- Through a dedicated VPN app offered by your VPN service (most popular option; offers the most features)
- Through a third-party app, such as Tunnelblick (for Mac OS), Viscosity, or OpenVPN Connect for Android. There are many third-party apps available – be sure to do your research and check with your VPN provider to see if it’s supported/recommended.
- Natively on your operating system with the built-in VPN functionality (no apps required). Many operating systems natively support VPNs: Windows, Mac OS, Android, and iOS. To use this you will need to import your VPN’s configuration files onto your device. This will use the IPSec/IKEv2 or IPSec/L2TP protocols, rather than OpenVPN, since OpenVPN can only be used through apps. (PPTP is also sometimes supported, but this VPN protocol is not recommended due to security vulnerabilities.)
How to get the best VPN speed & performance
How can you achieve the best VPN speed and performance?
If you are using a good VPN service, you shouldn’t notice a huge reduction in speed. Of course, the extra work that goes into encrypting your traffic across VPN servers will affect speed, but usually it’s not noticeable for regular browsing, especially if you’re using a nearby server.
To optimize your VPN speed and achieve better performance, here are some factors to consider:
- High latency – You can generally expect slower speeds when you connect to servers further from your location. Solution: Connect to VPN servers closest to your location.
- Server congestion – Some VPN services oversell their servers, resulting in congestion, low bandwidth, dropped connections, and slow speeds. All of the recommendations on this page performed well in speed testing and offer good bandwidth and performance.
- Antivirus or firewall software – Antivirus and third-party firewall software may interfere with and slow down VPNs. Some software will implement their firewall on top of the default (operating system) firewall, which slows everything down. Solution: Disable the third-party firewall, or add an exception/rule for the VPN software.
- WiFi interference – WiFi interference problems are unrelated to the VPN, but it can make a difference in overall speed. Solution: It may not be convenient, but using a wired (ethernet) connection will improve speed and security.
- Processing power – Some devices don’t do well with the extra processing power that’s needed for VPN encryption. This may be the case with older computers, most routers, and some mobile devices. Solution: Switch devices or upgrade to a faster processor (higher CPU).
- Network setup – Some networks do not work well with certain VPN protocols. Solution: Experiment with different VPN protocols and/or ports (OpenVPN UDP / TCP / ECC / XOR, IPSec, etc.) to see what works best.
- Internet service provider interference – Although not very common, there are reports of internet providers interfering with and/or throttling VPN connections. Solution: use a VPN with obfuscation features, which will conceal the VPN traffic as regular HTTPS.
To achieve the best VPN speed possible, you can experiment with the different variables until you find an ideal solution for your situation. The easiest way to get the best speeds is to choose a nearby server with few users and lots of available bandwidth.
Are VPNs safe and legal?
First we will address the issue of safety.
If you are using a good, reputable VPN service that effectively secures your traffic (no leaks), then yes, a VPN is safe to use. But therein lies the catch because there are many unsafe VPNs on the market, especially when it comes to free VPNs, which we will explain further below.
The next question: Are VPNs legal?
In general, the answer is yes, it is perfectly legal (and normal!) to use VPNs, even if you are in places like China where VPNs are restricted. VPNs are used every day by businesses and individuals throughout the world for basic privacy and security purposes. Businesses rely on VPN technology and encryption for security reasons and it would not make sense for this to ever become illegal.
That being said, China currently has a “ban” on non-approved VPN services that do not go along with state censorship requirements – explained more in the China VPN guide. The United Arab Emirates also has laws against people using VPNs to evade state censorship, but again, VPNs themselves are generally not illegal.
What is the best FREE VPN service?
“When something is free, you are the product.”
This famous maxim certainly holds true for “free” VPNs because you are likely paying for the service with your private data, which is sold to third parties.
Just like with Google and Facebook, free VPN services will offer a free product that collects your data for profit. Here are five well-documented reasons showing why free VPN services are dangerous:
- Malware – Malware is often hidden in free VPN services to collect your data. One study found malware in 38% of free VPN apps for Android devices – and here is another recent example.
- Tracking – Tracking libraries hidden in free VPNs are also used for data collection. The popular Betternet free VPN app was found to contain 14 different tracking libraries.
- Third party access to your data – Everything you do through a free VPN could be provided to third parties – and many VPNs explicitly state this in their privacy policies. Hotspot Shield was publicly called out for doing this by the Center for Democracy and Technology.
- Browser hijacking – Some free VPNs have been found to hijack and redirect browsers to e-commerce sites, such as Alibaba and eBay, through partner networks.
- Traffic leaks – This is perhaps the greatest risk for people using a free VPN because it exposes your identity. One study found that 84% of free Android VPN apps leaked user data, thereby rendering the VPN useless.
As a safer alternative to free VPNs, there are also a few free trial VPN services, which may be worth considering.
If you’re serious about privacy and online freedom…
Start using a VPN whenever you go online. Just connect it in the background and go about your business online as usual. Your VPN will safely give you location anonymity, hide your IP address, encrypt your traffic, secure your data, and protect your privacy online.
Trends in privacy – In just the last few years we’ve seen many unprecedented developments in the areas of corporate and government surveillance, which has fueled the use of VPNs throughout the world:
- With legislation passed in March 2017, internet service providers in the United States can now legally record online browsing history and sell this data to third parties and advertisers. Government mass surveillance also continues unabated, regardless of which political party is in office.
- Residents of the United Kingdom are having their online browsing history, calls, and text messages recorded for up to two years thanks to the Investigatory Powers Act. This private information is freely available to various government agencies and their global surveillance partners without a warrant.
- Australia has also recently implemented mandatory data retention laws, which require the collection of text messages, calls, and internet connection data. Australia is also working hard to force companies to provide backdoors to encryption, thereby giving government agencies to hack devices and spy on their own residents.
Public-Private surveillance cooperation – Many large tech companies, such as Google, Microsoft, and Facebook, collect vast amounts of data through their products and services. While the data is often used for advertising, it can also be provided to government agencies (see the PRISM surveillance program).
The good news is that there are very effective solutions to these problems. You can protect yourself right now with a good VPN and the other privacy tools, which will put you back in control of your data.
Best VPN comparison table
As a brief recap, the table below highlights the best VPN services that meet the following criteria:
- Located in a good privacy jurisdiction (outside of 5/9/14 Eyes countries)
- Passed all tests with no leaks found whatsoever (no IP address leaks or DNS leaks)
- Established company with a good track record and history (no new/unknown VPN providers)
- Supports the OpenVPN protocol and strong encryption standards
- Offers a money-back guarantee (between 7 and 30 days)
$6.67
(49% discount)
(30 day refund)
Rating
#1
(Read review)
€8.95
(7 day refund)
Rating
#2
(Read review)
$2.99
(75% discount)
(30 day refund)
Rating
#3
(Read review)
$4.92
(7 day refund)
Rating
#4
(Read review)
$3.75
(7 day refund)
Rating
#5
(Read review)
Comments: This particular guide has always been targeted by shills spamming various VPN providers. Therefore please keep comments limited to sharing your experience or feedback on the services listed in the guide.
i’m using vypr at the moment which is a decent service.
speeds however haven’t been that great lately in europe so i imagine it is why it was not included in this list.
will probably try expressvpn once my sub is over.
I don’t see ipVanish in your list, is this one that you checked and if so on what grounds did it fail – it is the service I currently use 🙂
Hi Dave, IPVanish is a decent provider (see IPVanish review). It is based in the US, which is not the best privacy jurisdiction (5 Eyes), and it was also involved in a logging scandal last year, but the logging case took place under the old management structure, which is no longer running the company.
@ BeeBee FEBRUARY 10, 2019,
Per your earlier comment(s) and incombo to draw built attentions, online browsing and such should always be kept separate from online purchasing. – – Intermixing all will sabotage your privacy, where as purchasing online requires name, phone number and shipping/billing address, and your card number.
This is a needed evil that has to be, in getting what it is you’ve bought.
–
In the US there are anti-money laundering synergy processes, besides online Companies need booking basically to show their money paths.
– This is why I suggested using multiple browsers for specific things and if a VPN’s (server) is involved in a transaction stay with both (browser-VPN server) for all your purchases in US.
Your free to shop around for best prices to narrow down a derision from a different browser and/or VPN servers location with an adblocker but do continue to buy using the specific ones in mind for your purchases.
–
The way PayPal works, your real name and registered PayPal email address is known by a merchant whenever you buy with PP – that is always true anywhere you use PayPal… Not your financing info.
Then the reverse can also apply where it’s known of the sellers real name (unless masked by CO. name) and see the registered PayPal email address of their account.
Sites like eBay that process cards through PayPal without card owner having said PP account, I’m not sure how much PP gets of your info.
{So nice would be if you would add links where it’s known that PP sells users data to third parties. As well where online shops and Banks in the US are accused of selling users data too.} How can one stop and restore privacy if they are not aware of where it’s lost ?
–
About Blur, I knew about it’s breach and hoped they’ve work to prevent this from happening again.
I was not aware of their complaints concerning billings, customer support issues. Links ?
Only the Blur users info prior to January 6th, 2018 was potentially exposed. That’s all I understood as follows:
Each users email addresses.
Some users first and last names.
Some users password hints but only from our old MaskMe product.
Each users last and second-to-last IP addresses used to login to Blur.
Each users encrypted Blur password.
(Users passwords are encrypted and hashed before they are transmitted to their servers, they are then encrypted using bcrypt with a unique salt for every user, output of this encryption process for these users was potentially exposed, not actual user passwords themselves.)
– Blur stressed that no passwords stored inside users’ Blur accounts were exposed.
– Blur maintained even the company itself does not have access to your most critical unencrypted data.
– They also advise to enable two-factor authentication for their users accounts.
https://www.abine.com/blog/2018/blur-security-update/
–
I get to learn it or rethink things with everyone I try to help here.
That’s why I try to and want to help people as they often have less time.
Thanks : )
Hoping someone can explain some things to me about VPNs and privacy. I know using a VPN would keep what I do on my home internet private from my ISP and private from my cellular provider on my phone. I guess my concern is besides hiding torrenting what other benefits are there if I use an Android phone. Basically everything but do is tracked and logged by Google from my understanding. I’ve logged into my account and turned off every tracking type setting I can find but from what I read that doesn’t matter. Say I wanted to really browse the web privately so that no one can see or track or record what sites I visit or what I search for.. what do I need to do?
Mike, regarding phones, you may want to check out the Librem 5. Yes, Google is tracking everything. For private browsing, you’ll also want to consider using a secure browser and an ad blocker (ads are basically tracking).
Not really much you can do unless you can bootloader unlock your device and flash the LineageOS or a custom LOS based ROM, TWPR recovery for it and find a root method. Then you’ll be in full control.
Seek your device and see – https://forum.xda-developers.com
–
As far as I know the LinageOS in an optional custom OS that allows you in dropping all-most everything Google and it’s interacting with your phone or in certain apps on it.
Use F-Droid for any added apps you’d need –
https://f-droid.org/en/
So with LOS I’d not flashed any g-apps what so ever, then the play store and it’s services running in the background is not a privacy concern – I seem to understand.
Not sure about that in adding g-apps.
–
Root and g-apps zips are all optional add-ins to the LOS custom firmware when first flashing and in some LOS based custom ROM’s when their not baked in.
Root I’d deem necessary to fulfill root access on your device to aid you with your privacy policy by a deep root level search and files inspecting in removal of other apps that are google dependent in one way or another.
– You should also look for a custom Rom that’s actively maintained being of your device specific that’s based off the LineageOS firmware, to have more options or a better looking OS UI than the LineageOS stock itself offers. Remembering any such LOS based custom Roms has the need for a custom recovery like TWRP – that with your TWRP backups of points in time can save your a_s as you experiment.
Important maybe to understand a devices ROM’s based on geo-location if your device is offered in different continents.
Hey Sven,
What did ExpressVPN change to replace Perfect Privacy as the top choice?
This list is adjusted and updated based on new developments and test results, so it is not static, nor should it be.
ExpressVPN went up in the rankings about a year ago because:
– They improved their network lock (kill switch) to add advanced leak protection measures, such as DNS and IP leak protection even when switching network interfaces, as well as adding WebRTC leak protection.
– They added more servers and vastly improved speeds.
– They clarified the virtual server location issue, what locations are virtual, and why they use these.
– They had servers in Turkey seized and authorities were not able to obtain any data, which makes them one of the few VPNs that have had their “no logs” claims put to the test and verified.
– They are one of the few VPNs that continues to work with Netflix and BBC iPlayer.
– They lowered prices when you use the discount link (drops the price to $6.67/month).
– General feedback I’ve gotten from other users has been very positive, more so than with other VPNs.
It has held the top spot for about a year and continues to do very well.
I wanted to try Express but they only support three devices. So I’ll go with Nord instead. It would be great if Express increase the number of supporting devises in the future.
Just a quick note: you can use an unlimited number of devices with your ExpressVPN subscription, but only three devices at the same time. For most people, this should not be an issue, unless you are going to be using four or more devices at the same time. This is explained on their website as well.
Regarding NordVPN, you get 6 simultaneous connections.
Thank you for the reply. I read Express and Nord privacy policy thoroughly and they might not keep logs, but they do use cookies and Google analytics for statistics, affiliate cookies and personalizing cookies. Yes you can block them through the browser but they’ll probably cause issues to the VPN service. They also mention that they can process the users data for like email for improving their services or marketing purposes IF the user consents, BUT they can do it anyway without any consent if applicable law demands it of legal basis legitimate interest. I find these details worrisome.
“Yes you can block them through the browser but they’ll probably cause issues to the VPN service.”
No, this is not correct. Don’t confuse website optimization (cookies and Google analytics) with the VPN. The two are completely independent of each other. VPN websites use Google Analytics because it’s necessary to track advertising traffic, and of course, without advertising and new customers, game over, no VPN service.
If you check their policies, the fact that blocking cookies will cause issues to the vpn is their words, not mine, but I’ll agree that they might mean browsing. Anyway, I still believe that a vpn is better than nothing too, but I don’t believe that they are 100% transparent. I’ve read everything there about vpn on the net, from websites that praise them, from websites that blast them. And the comments too. If someone is an average user that just needs privacy and security, vpn is a great solution. If someone really really needs to hide something, vpn is definitely not the only precaution that needs to use. Thank you.
BeeBee,
When you install a VPN client to a device all that’s needed to run it is your user name and password – honestly there are no cookies involved here.
Only if you should ever login to that VPN account related to your purchase (or trial) is the only time cookies ever play a part with a VPN… Your using your browser your going to their site and you’ve logged in – understand now ?
–
Heck yes there are many more precautions that equate too.
Make yourself an outline/plan and add to it – take notes related to all you want to accomplish – step by step.
A VPN is one of the major points to obtain first. Your IP is recorded when your on their site before purchase, simple is to trial one and using it signup with another. Use an alias email from an email account to hide real one.
–
Some points to remember:
1. Your moving a trust from your ISP to a VPN – (connection speed of VPN servers counts-closer to = better speeds).
2. Country where a VPN is Headquartered in (specifically related to privacy laws). Outside 5,9,14 eyes is better.
3. How you’d buy and pay for it (Yearly and Anonymously).
How paying is linked to you if by cards or is that processed outside their knowledge realm. Buy a month first before committing longer.
Using some discretion, if wanting to be as discreet in making them respecting your privacy that would lead to yourself being anonymous to them.
These last week’s I have thoroughly read everything concerning privacy and security and during the next days I will definitely take the necessary steps to become more security and privacy conscious. I was definitely wrong for not doing this more all these years but I’m just an everyday person, nothing to hide really so I was unaware of the extensive stalking from well…everyone above. That really pisses me off. Still, I’m an everyday person with everyday needs. Nothing shady or risky. How can someone ensure privacy when most people use a prepaid card buying online? I don’t live in a big city and buying online is essential for necessities. I still have to give a name, a phone number, a billing address and a card number to do my job. The delivery service still needs to come to my house. Even if I rented a PO BOX, I still need to provide an ID, and every data requested. So isn’t that a necessary evil that somehow sabotages the whole idea? Any suggestions? Also, I strongly believe that if someone isn’t really deep in knowing what to do, REALLY do, in order to go stealth, everything else is still a bet. For example, I believe that if an everyday user (like me or most of us for example) that uses the net to buy stuff, watch Netflix or read the news (I don’t have facebook, Twitter or anything that makes me visible) suddenly ” disappears ” by using a vpn, a private browser, change OS etc. wouldn’t that draws attention to the ISP and every other data collecting agency? I think that privacy and data collection is more challenging than we think. PS: Sven, you are a treasure. 👍
Privacy, at its core, relies on your data being secure.
Since you could say we’re now a cashless (online) society, privacy’s root is not that of your anonymity.
You can’t just suddenly disappear – it’s better to try and conceal your tracks, and you should as much as possible.
Maybe these that follow ideals will help : )
–
SECURE YOUR DEVICES:
Whatever your using in device(s) to connect online is ultimately that device’s endpoint – that can be linked to you / if you allow this.
Be mindful of any apps that you install to a device, as a single rogue app/software can punch a hole in your privacy protections.
Remember – if an app/software is free, you’re paying for it in some other way and usually it’s with your data it collects.
–
VirusTotal is your insight to rouge and malicious applications.
– Open-source software is in another class but, still you should run it through a VirusTotal check.
– Keep your devices OS and apps up to date, this single step will significantly reduce your attack surfaces.
– Every application or service you install will increase your vulnerability risks because no software is perfect. Look for both security and privacy respecting ones that don’t flip-flop from the stated webpage to their actual TOS and Privacy Policy meanings.
– Uninstall anything used very little in the last 6 months, or look to a portable application for it’s purpose – (cautiously). https://www.thebalance.com/types-of-stand-alone-software-1293731
– Use a denial by default Firewall for simple and yet exhaustive solution for any applications network activity, controlling and monitoring (stopping their telemetry).
One such example is Windows 10 Firewall Control, prevents undesired programs and Windows updates, informational incoming and outgoing leakage of applications running locally or remotely.
Designed for Windows 10/8/7/2008/2012
http://sphinx-soft.com/Vista/
–
SECURE YOUR BROWSING:
Secure Browser, Search Engine, VPN, Password Manger, Ad Blocker, Mail accounts, etc.
Online browsing is usually at the heart of what most people do. But, just as you’re looking out at the world, you’ll also most likely have a lot trying to look in to your habits – interests – etc.
– Use two or three different browsers, each for specific things and don’t intermix their purposes.
– Never let browsers retain (store) your passwords and use strong, unique alphanumeric-special character passwords that a password manager generates and stores that login details for you.
– When out and about consider using your phone’s data (4G or LTE only) for a secure network over having to choose a insecure public Wi-Fi option. That applies to it’s hotspot function for your laptop computer – if you carry it with you.
– Consider using Two-factor authentication for an extra layer of protection to your online accounts. Once you enter your password on the site, you’ll get a request for the 2FA code that’s generated from something else you own. Secret questions/answers works too.
–
Reduce Your Online Footprint:
Never make an online account in your real name or use an eMail address that includes your real name – if you can help it.
– There are dozens of websites called data brokers that crawl the web for your personal information, and then post it online for the world to see. These data broker sites are always selling access to this information, which could include the city you live in along with deep amounts of your other information -interests.
– Abline offers a nifty concept (I’ve used neither) of DeleteMe and Blur. https://abine.com/index.html
You can use their helpful guide from the DeleteMe part to remove yourself from each of these data broker websites, but this process can be tedious and time consuming. Still it’s far less $ than a subscription that DeleteMe will cost – so if you’ve the time.
https://joindeleteme.com/help/diy-free-opt-out-guide
–
Beacon’s, web bugs, zombie cookies, fingerprinting, IDing it’s all online tracking (possibly even more) that’s added to your device or info taken from it. You can use a virtual environment for security and privacy protection like https://www.shadowdefender.com/
Today’s security for privacy might not be what needed for tomorrow’s, stay on top of it.
Contribute your best ways on this site in the other topics as you learn and progress to help other readers out.
Thanks : )
Thank you for your answer and your time. I’m already discussing the issue with friends and family but most of them believe they have nothing to hide. Although they think I’m overreacting at least agreed to allow me to take some privacy steps concerning their social media accounts (thank God I don’t have any), their browsers and Chrome/Android privacy. I’ll choose a good VPN today (I’ll go for Nord because it supports more devices) but I will also like to ask what do you people do when you need to order stuff online and bitcoin definitely is not an option. Paypal? Prepaid card? Thank you all in advance. 👍
BeeBee is that aka BeBee as well ?
Or am I talking to different souls ?
–
“but most of them believe they have nothing to hide”.
It’s not about something to hide or doing something dishonest, it’s about every single time you interact online your profiled, your data is kept in ID’ing you across different devices and browsers to a very comprehensive collection on you and of your data. —
– Interests, shopping, what you say and feel, sites you visit, really in and to everything you do online…
Without a paid VPN that adds a layer of security and privacy.
This in/of/to your data can affect jobs, promotions, access to insurances health-home-auto, banking and credit decisions, prices you see in shopping online, and many more areas to ones life from an online use.
–
See my reply here below to scott JANUARY 9, 2019 after Sven’s reply.
Also see – https://restoreprivacy.com/facebook-lies/
https://restoreprivacy.com/facebook-privacy/
https://restoreprivacy.com/chrome-scanning-files/
https://restoreprivacy.com/top-10-reasons-vpn/
If some VPN homepage sites were using ‘session recording scripts’ you can count that other unrelated sites do it – so understand this concept- https://restoreprivacy.com/vpn-websites-recording-scripts/
–
Also see my earlier comments on –
https://restoreprivacy.com/privacy-tools/#comments
Since your interested in Nord I wouldn’t want you to go in blindly. See Sven’s “Update with additional information” at the end of this article.
https://restoreprivacy.com/lawsuit-names-nordvpn-tesonet/
I personally have used VPN.ac (allows 6 connections) per account, for years with only one minor irritant of the Gateway Removal kill switch needing toggled off-on after having it set on in advanced setting / this with doing so makes the tray network icon yellow triangle warning go away.
https://restoreprivacy.com/vpn-ac-review/
Update: VPN.ac has a Win. beta that completely re-designed kill switch function – so we’ll see.
–
“like to ask what do you people do when you need to order stuff online”, I use PayPal most of the time, you link a debit/cc card or a bank account or both. Works with only a debit – that is after I removed my bank account (I changed banks) and a debit for it expired.
Did you check out Abine-Blur ?
Protects your private info and helps you stay anonymous online with masked , burner cards (virtual cards), ad blocking, masked emails, and masked phones.
Save money on VPN’s –
https://restoreprivacy.com/vpn-coupons-discounts/
See my comments – one about VPN.ac 2-year billing cycle. Peace : )
Nope, it’s me. I spelled my nickname wrong. My apologies. 😊 Blur has been compromised. They bravely admitted it themselves. There were also many complaints concerning billings, customer support and despite the fact I’m cautious with comments I decided not to use their services. Paypal has been accused that sells data to third parties. I’ll do a further search concerning this issue but I’ll probably go with the Paypal choice since I mostly use online banking anyway. Living in the countryside leaves me no choice than that of online banking in order to purchase the things I need so it’s a one way, and I know that eshops and banks DO sell your data too unfortunately. I will definitely read all of the links you gave me right away. Thank you very much, you are a treasure. I have benefited greatly from people like you into improving my knowledge and help others too. 👍
Do you see any advantage in paying anonymously with options like bitcoin, or is just paying a vpn with your real info safer? Bitcoin seems a little shady and i am assuming you have to give your real info to them.
Hi Scott, it depends on your threat model, but in general I do not see much advantage to paying anonymously for a VPN. VPNs are becoming mainstream privacy and security tools, just like antivirus software. Likewise, using a VPN is not illegal or “shady”, so the transaction should not cause any issues.
There are different options for acquiring Bitcoin and other cryptocurrency, but nearly all involve high fees and a degree of hassle and risk.
If your only streaming a movie from some apk here and there, does it even pay to use a vpn? Seems vpn’s log your real info, you may seem suspicious because if you use a vpn you could be hiding something, it’s really unclear that they protect your identity anyway when push comes to shove. Seems safer to just stream through the apk without a vpn in a lot of ways. Maybe better to just trust your major isp not to bother you then trust a 3rd party vpn.
No reputable VPN service logs any kind of user activity, unlike your internet service provider, which can easily log every website you visit by storing all your DNS requests sent in cleartext. The only VPN on this list that maintains 24 hours worth of basic connection logs (no activity) is VPN.ac, and they clearly state their reasons (security) for doing so. There have been shady VPNs that have cooperated with government agencies, such as PureVPN (see logging case) and I do not recommend these providers.
Internet service providers are an adversary that collects your browsing information and passes this along to third parties, including government agencies. In the UK, internet browsing history can and is used as evidence in prosecuting people for various crimes. In the US, your browsing history can be sold to advertisers and other third parties, which has been perfectly legal since March 2017. Regardless of where you’re at, you should simply assume that your internet provider is logging your activity.
Even if you don’t care about privacy, you should still use a VPN for security reasons. WiFi networks can get hijacked and used to intercept confidential information, such as bank info, usernames, passwords, etc. VPNs also allow you to unblock websites that are restricted in your region.
@Sven – totally agree with all your points made…
@scott “If your only” doing this, that or the other – it’s all adding up every single time your online. Think back of a two year period in time of all you’ve forgot you’ve done online.
Bam, you can count on your ISP knowing it even if you don’t recall everything. Why let that happen in the first place.
– Your ISP sees the whole picture – your data trails, so your a puppet paying for their service and they further benefit from selling your data banked up.
–
Get a good VPN that excepts gift cards from retailers.
You can pay by ‘Gift Card’ via the “Other methods” usually for this option that accepts (ex: Dollar General, Subway, CVS/pharmacy, oBucks) Gift Cards.
@Buying these GC’s in-person with cash at their store locations leaves no digital footprint of your VPN purchase and aids in your anonymity.
You can see one example how to do this with VPN.ac in my JANUARY 1, 2019 comment – https://restoreprivacy.com/vpn-coupons-discounts/#comments
–
Something to consider while TLS – HTTPS websites are
point-to-point security in an encrypted connection – it’s only from your browser – still your ISP handles the devices DNS requests.
Why not install a good VPN and have your device wide
(apps-programs) installed use a stronger encrypted connection (when they connect to the web) that only a VPN offers… Alas that’s all the DNS requests of your browser routed through your VPN too.
Thanks Sven, for all you do.
I have tried all VPN providers and I can confirm like others vpn.ac is a great service. The logs thing seems reasonable as it does not give away incriminating evidence and having an IT background there explanation is very much understandable. Thanks again mate. Happy New year!
What do you recommend which vpn to purchase. I only used for searching the web & playing fortnite. I have a router from netgear xr500.
Hi Jack, I’d recommend ExpressVPN for the performance, which is very important for gaming.
Can a website still find my true IP address even while connected to an Express vpn
Websites using Google Analytics and various advertising networks can very well track and identify visitors based on a variety of different inputs with their browser (see browser fingerprinting). Therefore it’s best to use a VPN in conjunction with a secure browser configured for more privacy. See my guides: secure browser (an overview of different browsers) and also Firefox privacy, which deals with privacy configurations, tweaks, and add-ons.
But to answer your question, if your VPN is not leaking, then your IP address should be secure, but websites may still be profiling you based on browser inputs. (FYI: Restore Privacy does not use Google Analytics or any invasive tracking or analytics, as explained in the Mission statement.)
There is one caveat and that is with WebRTC leaks, which can expose your IP address through WebRTC stun requests – this is a browser vulnerability with browsers that utilize WebRTC APIs. See my WebRTC leak guide for how to fix this.
Well I’m very happy with VPN.ac. The one thing that irks me is the logs, and for that reason I may change to ExpressVPN when my account runs out.
But back to VPN.ac:
Good speeds in the United States, very good in fact. I’m usually connected to Chicago servers, or overseas occasionally and have never had any buffering.
The apps give you different protocols, light/dark mode, obfuscation, leak protection and more. They updated the kill switch for the Windows app a few weeks ago.
Soon they will be supporting Wireguard according to a post on their blog, but I’m not sure when exactly that will be.
The one big con is the logs. But they seem like a very reputable provider in all my interactiosn with them, so it may not be an issue, who knows.
Yes, I really like vpn.ac as well. speed are consistently fast and every server works with US netflix, you dont really need to change to US server for US netflix, you can connect any of the server, say France and once you logged into netflix, it will show US content. Even inside netflix activity logs, it will show you are connecting from US Georgia.. I think that is a pretty neat feature I must say.
I really hope they go no-log with proven audit result like vypr did one day.
Finger crossed!
@ Buzz & kaido,
Logs: they do keep track of aggregate connection logs. That means – they want to see how the service is being used, across all their users, to make sure both performance and security remain legit – this isn’t necessarily a bad thing.
This data (mostly) is kept on a different server altogether. And VPN.ac erases this data within one day – comparing this up to a week or month long in connection logs that are kept with some other VPN companies.
–
I like the fact they roll their own Private DNS servers. This enables VPN.ac users to hide their activity, precisely the URL of the websites that they might visit from their Internet Service Providers and other spying agencies.
Most of their DNS servers are situated in regions that are outside the United Kingdom and the United States. All DNS traffic that passes through their servers as DNS queries are encrypted (AES 128-bit) to protect customers against 3rd party DNS monitoring and hijacking.
VPN.ac generates millions of DNS queries per day, and these are mixed with legitimate queries from VPN.ac users to make sure that potential monitoring of their DNS resolvers will be ineffective.
–
They’re Based in Romania – A Safe Jurisdiction, if they do collect some of your personal data, (say logs – it’s aggregated into a combined form and represents a collection of the mass or sum of all VPN.ac users). Besides possibly being on an altogether different server than your selected surfing point from, they won’t share it with any other countries. Rest assured…
Thank you : )