I am not related to them, I'm just a user of it. But Mullvad.net is the only decent VPN. (They're the one Mozilla chose to provide their VPN infrastructure)
Rather, auditing is only proof that the parts the auditors looked at were secure against what the the auditors knew to look for, at the moment of the audit.
Auditing might not even cover the entire codebase.
For example, this is the writeup of the DeFi Euler hack yesterday by one of the sites listed auditors, who didn't actually audit the code that caused the bug...
Same company (no matter how hard they try to hide it), so unless it has better pricing or features, if you don't trust Nord, there's no reason you should trust Proton.
Though I do trust both, as Tesonet is based from here (Lithuania) and from my experiences with people who worked there, they have full trust in them and continue to use their services years after leaving the company.
> Same company (no matter how hard they try to hide it)
Do you mean that NordVPN and ProtonVPN are the same 'spiritually' in that they're both companies selling a VPN for profit?
Or is there genuinely some business connection between them that I've missed?
In the sense that there's a huge overlap of people who created Nord that are now working on Proton. Might be under the same employer indirectly (Tesonet or whatever they're called now). Whether officially they're under a different company/jurisdiction, that's a different thing.
From Tesonet[1]:
>We also provided ProtonVPN(opens in new tab) with operational and HR support when they decided to open an office in Vilnius.
>Contrary to all the myths and rumors, operations by different services have never been related to each other. The only common resources are the centralized HR and legal teams. We have strictly relied on this philosophy from the beginning in order to avoid any possible conflict of interest.
Especially not after Kape Technology bought up review sites and VPNs and updated reviews to shill the ones they own.
Kape Technologies was formerly known as Crossrider before it was acquired by Teddy Sagi, an Israeli billionaire that has spent time in jail for insider trading. Crossrider itself never had that great a reputation itself, what with their primary product being a development platform through which they were frequently used by third parties to invade ad platforms to serve up malware. They are now the owners of ExpressVPN, PIA, CyberGhost, and Zenmate.
Mullvad is a great example of how all VPN companies who promote privacy should behave, if only for the signup process itself. Zero personal information required.
Take a look at Mullvad for a VPN done right. Completely anonymous usernames, randomly generated, accepts cryptocurrency or cards purchased anonymously at a physical store with cash.
One concerning issue is the Swedish jurisdiction. The nordic countries are better at privacy, but Sweden is a 14-eyes nation. But I can't say it's better or worse than NordVPN's... Panama.
As long as people still realise that regardless of whether they pay with cash in an envelope or directions to the end of a rainbow, if they connect with their own IP to mullvad’s servers and there’s some compromise of these promises (court order, etc), it’s trivial to be owned.
Or if you wanna pay by cash, just send it to them in an envelope. No need to buy a card first then using that, when you can pay by the alternative that gives you the most privacy.
Thanks for providing additional information to readers. However, this is not entirely correct. Let me clarify:
- Community nodes are used to diversify server ownership and strengthen the privacy of connections.
- Community nodes may technically act as entry, middle and/or exit nodes.
- Community nodes will never be used for unencrypted connections, only for encrypted connections. We are thinking about a concept of trusted partners, which will also be allowed to handle unencrypted connections - but this is currently not the case.
- We publish advisories [0], which are automatically applied by all clients. This gives us the ability to quickly react to changing situations. Currently, community nodes _are_ being selected as exit nodes, but not as entry nodes.
I hope this cleared things up. I am happy to go into more detail.
Mozilla/Mullvad seem to be liked well enough. It's what I use, but I am doing it for geolocation issues and occasional scraping, so I am less concerned about logging/security.
A tonne of people here recommending Mullvad, which is great - they're great - but they don't offer the main selling point of most VPNs, so I feel this question needs qualification:
What are you looking for a VPN for. As much as the ads misrepresent the security & privacy aspects of NordVPN, &c., the vast majority of people use VPNs to watch region-restricted media. Mullvad does not support this.
So ... who's the best provider for watching region-restricted media?
NordVPN honestly seems like a very competitive option here
Perfect Privacy. VPN chaining, setting so your IP address always changes to be the one closest to the server, no logs (audited), stored in ramdisk, unlimited connections and bandwidth because they don't even know who's connecting.
Cons: it can be slow and have issues with disconnects sometimes.
I didn't know that, but it almost makes me trust their service more. While I don't share their views, I do think technologically capable extremists are probably who I'd most want behind a service that I use as a layer for anonymity and privacy from everyone including government agencies.
