115
Mullvad VPN: Fourth Infrastructure audit completed by Cure53 (mullvad.net)
submitted 3 days ago by ForgottenFlux@lemmy.world to c/privacyguides@lemmy.one
13 comments fedilink hide all child comments
top 13 comments
sorted by: hot top controversial new old
[-] boredsquirrel@slrpnk.net 28 points 3 days ago

Meanwhile Windscribe...

[-] catalog3115@lemmy.world 13 points 3 days ago

Mullvad is the best VPN

[-] Mora@pawb.social 5 points 2 days ago

Big oof. But if you have a lifetime subscription you can still use them. Just generate/download the configs and don't use their client.

[-] boredsquirrel@slrpnk.net 3 points 2 days ago

Yep and hope their servers dont have equally bad code.

[-] FeelzGoodMan420@eviltoast.org 3 points 3 days ago* (last edited 3 days ago)

So is he shitting on winscribe specifically or all commercial VPNs? Idk how to read into this. Is he saying Mullvad sucks too?

[-] boredsquirrel@slrpnk.net 6 points 2 days ago

He says Windscribe sucks. Mullvad obviously not as they are regularly audited

[-] Synnr@sopuli.xyz 6 points 2 days ago* (last edited 2 days ago)

Just something to keep in mind for those not in the security space. When a security company does an audit, its generally a checklist of commercial and custom security software along with a couple people poking around looking for more manual harder to find stuff. But there's a reason companies like Mullvad have a bug bounty program.... Just because cure53 didn't find it, it doesn't mean some bored hacker won't..

Absolutely better than nothing though.

[-] boredsquirrel@slrpnk.net 2 points 2 days ago

Thanks for the info

[-] Undertaker@feddit.org 1 points 2 days ago

He claims all private VPN providers are similar bad but there is no proof, only some snippets from Windscribe which say nothing about other clients.

It's like saying one person is lying, so must all others.

Maybe good points about Windscribe but bad generalization in terms oft arguments.

[-] Tangent5280@lemmy.world 6 points 2 days ago* (last edited 2 days ago)

Damn, didn't know this. I thought they were pretty standup people, didn't think the actual product quality would be left, so... wanting.

EDIT: Sorry, I was talking about Windscribe, and this comment was supposed to be in response to boredsquirrel's comment in this thread.

[-] uhmbah@lemmy.ca 8 points 2 days ago

What did I miss?

Cure53 concluded their report by stating that they “..attempted to identify any potential methods by which a user's VPN traffic anonymity or integrity could be compromised. No such issues were found, and no vulnerabilities affecting the core product were detected.”

[-] Tangent5280@lemmy.world 4 points 2 days ago

Nothing, sorry, I was talking about windscribe in response to another comment in this thread.

[-] uhmbah@lemmy.ca 1 points 2 days ago

👍

this post was submitted on 27 Jun 2024
115 points (100.0% liked)

Privacy Guides

16080 readers
280 users here now

In the digital age, protecting your personal information might seem like an impossible task. We’re here to help.

This is a community for sharing news about privacy, posting information about cool privacy tools and services, and getting advice about your privacy journey.

You can subscribe to this community from any Kbin or Lemmy instance:

Learn more...

Check out our website at privacyguides.org before asking your questions here. We've tried answering the common questions and recommendations there!

Want to get involved? The website is open-source on GitHub, and your help would be appreciated!

This community is the "official" Privacy Guides community on Lemmy, which can be verified here. Other "Privacy Guides" communities on other Lemmy servers are not moderated by this team or associated with the website.

Moderation Rules:

  1. We prefer posting about open-source software whenever possible.
  2. This is not the place for self-promotion if you are not listed on privacyguides.org. If you want to be listed, make a suggestion on our forum first.
  3. No soliciting engagement: Don't ask for upvotes, follows, etc.
  4. Surveys, Fundraising, and Petitions must be pre-approved by the mod team.
  5. Be civil, no violence, hate speech. Assume people here are posting in good faith.
  6. Don't repost topics which have already been covered here.
  7. News posts must be related to privacy and security, and your post title must match the article headline exactly. Do not editorialize titles, you can post your opinions in the post body or a comment.
  8. Memes/images/video posts that could be summarized as text explanations should not be posted. Infographics and conference talks from reputable sources are acceptable.
  9. No help vampires: This is not a tech support subreddit, don't abuse our community's willingness to help. Questions related to privacy, security or privacy/security related software and their configurations are acceptable.
  10. No misinformation: Extraordinary claims must be matched with evidence.
  11. Do not post about VPNs or cryptocurrencies which are not listed on privacyguides.org. See Rule 2 for info on adding new recommendations to the website.
  12. General guides or software lists are not permitted. Original sources and research about specific topics are allowed as long as they are high quality and factual. We are not providing a platform for poorly-vetted, out-of-date or conflicting recommendations.

Additional Resources:

founded 1 year ago
MODERATORS
jonah@lemmy.one
dngray@lemmy.one
freddy@lemmy.one
ninchuka@lemmy.one
jonah@lemmy.jonaharagon.net