To narrow the hundreds of VPN providers down to a manageable list, we first looked at reviews from dedicated sites like vpnMentor and TorrentFreak, research and recommendations from noncommercial sources such as That One Privacy Site and privacytools.io, and user experiences and tips on various subreddits and technology-focused websites like Lifehacker and Ars Technica. We settled on 32 VPNs that were repeatedly recommended. From there, we dug into the details of how each one handled issues from technology to subscriptions:
Speed-wise, when connected to VPNHub’s UK and Netherlands endpoints, our FTP and HTTP downloads came in at around 10MB/s (80Mbit/s). Connecting to U.S. endpoints gave us 4.8MB/s (38.4Mbit/s) via FTP and 4.2MB/s (33.6Mbit/s) via HTTP. While that’s good enough for everyday browsing and streaming, your results may vary – we connected to U.S Netflix no problem, but, as with many VPNs on this list, BBC iPlayer promptly showed us the door.
Borders still exist on the web, in the form of geographic restrictions for streaming content. The BBC iPlayer, for example, lets UK residents watch the Beeb to their heart's content. The rest of the world, not so much. But if you were to select a VPN server in the UK, your computer's IP address would appear to be the same as the server, allowing you to view the content.
Routers – When you install the VPN on your router, all the devices that connect to your router will be using the encrypted VPN tunnel – without the need to install VPN software on each device. The router will only count as one VPN connection under your subscription, even if there are numerous devices using the router’s encrypted VPN connection. There are some important considerations before you do this – see my popular VPN router guide for setup tips.
One of the worst things that can happen to use is engaging in P2P/Torrenting only to find out that your IP leaks, and you have to pay a HEFTY DMCA FINE! Below we conducted a WebRTC Test from Browser Leaks for Mullvad. The process involved connecting to a server in Singapore. As you can see, the results below show that Mullvad successfully managed to cloak your identity, with no leakages!
IPSec. Probably the best supported and most widely used protocol, IPSec is rapidly becoming the standard for VPNs. IPSec, which the Internet Engineering Task Force (IETF) developed, consists of multiple subprotocols; each handles a different element of the process, and some are optional or interchangeable. IPSec is a broad specification, and vendors' IPSec implementations differ. Make sure you read the fine print to understand what parts of IPSec a product uses.
I have been using PIA for two years now. Actually, I was really skeptic when I first went to the website. It had a stock photo of a family, shady "we are the best" text all around. But hey, I subscribed to give it a try. And it worked wonderful. PIA has been an incredibly solid, fast and reliable VPN provider for me through 2 years. Never had an issue with them whatsoever.
Computer and software providers work hard to make sure that the devices you buy are safe right out of the box. But they don't provide everything you'll need. Antivirus software, for example, consistently outperforms the built-in protections. In the same vein, VPN software lets you use the web and Wi-Fi with confidence that your information will remain secure. It's critically important and often overlooked.
For a VPN that services telecommuters, consider using a vendor that offers a firewall with separate zones for work and home machines that share an Internet connection. As Figure 2 shows, the firewall's trusted zone gives the telecommuter's work PC access to the Internet and VPN access to the corporate LAN, and an untrusted zone allows a personal machine access to the Internet only. SonicWALL and WatchGuard currently offer such firewalls, which aren't much more expensive than home routers and eliminate worries about the other computers on your telecommuters' home LANs. However, multizone home firewalls don't eliminate the need to continually verify the security of remote VPN clients.
IVPN doesn’t have as many server locations as larger services like ExpressVPN do. When we initially recommended the service, IVPN was limited to 13 countries, compared with ExpressVPN’s 94. But in the months since, IVPN has doubled that to 26, including two additional locations in Asia (Tokyo and Singapore). We’ve yet to test the new servers though, and in the past, IVPN’s single location in Asia—Hong Kong—was slower than competitors.
The fast speeds offered by ExpressVPN servers, coupled with Netflix unblocking and torrenting capabilities, make the provider a great choice. We can vouch for this, especially after conducting a thorough analysis on the VPN service. The test below involves all aspects of information leakage. As you can see, there is no indication of our official US location. The local IP, the public IP, and the DNS address all indicate that we are based in Canada!
You'll have to decide whether you want to base your VPN on a software implementation or a dedicated hardware device. Some of the protocols make the decision for you—for example, SSH is strictly a software implementation, at least for now. Software implementations tend to be cheaper, sometimes even free. Windows NT 4.0 has PPTP support built in, and XP and Win2K have PPTP and IPSec built-in support, as I mentioned earlier. A nice open-source implementation of IPSec called Linux FreeS/WAN is available at http://www.freeswan.org. Software VPNs tend to work best for server-to-server communication or for small groups.
The ongoing saga of Facebook data harvesting and the implementation of the GDPR has personal privacy online as a hot topic once again. One common method for protecting yourself online is the use of a Virtual Private Network — or VPN for short. It allows you to safely send information when using public networks via a group of networked computers and faraway servers. Not all VPNs are the same, however, so we took some time to find the best VPN services.
One popular technology to accomplish these goals is a VPN (virtual private network). A VPN is a private network that uses a public network (usually the Internet) to connect remote sites or users together. The VPN uses "virtual" connections routed through the Internet from the business's private network to the remote site or employee. By using a VPN, businesses ensure security -- anyone intercepting the encrypted data can't read it.
Though PIA doesn’t list its leadership on its website, that information isn’t hard to find. The founder, Andrew Lee, has been interviewed by Ars Technica; the CEO, Ted Kim, is also on the record; and privacy activist and Pirate Party founder Rick Falkvinge is listed as Head of Privacy on the company’s blog. PIA can also point to court records showing that when approached by law enforcement for detailed records, the company had nothing to provide. PIA boasts a huge network of servers and locations around the world, and though the PIA app isn’t as polished as those of some competitors, it is easy to use. Like our top pick, IVPN, its iOS app also added OpenVPN support in mid-2018. But in our speed tests, PIA was just okay, not great. When we averaged and ranked all of our speed tests, PIA came in fifth, behind our top picks as well as OVPN and ExpressVPN.
If HTTP browsing is a postcard that anyone can read as it travels along, HTTPS (HTTP Secure) is a sealed letter that gives up only where it’s going. For example, before Wirecutter implemented HTTPS, your traffic could reveal the exact page you visited (such as https://thewirecutter.com/reviews/best-portable-vaporizer/) and its content to the owner of the Wi-Fi network, your network administrator, or your ISP. But if you visit that same page today—our website now uses HTTPS—those parties would see only the domain (https://thewirecutter.com). The downside is that HTTPS has to be implemented by the website operator. Sites that deal with banking or shopping have been using these types of secure connections for a long time to protect financial data, and in the past few years, many major news and information sites, including Wirecutter and the site of our parent company, The New York Times, have implemented it as well.
HotSpot Shield is a product that has had some ups and downs in terms of our editorial coverage. Back in 2016, they picked up some very positive coverage based on founder David Gorodyansky comments about protecting user privacy. Then, in 2017, a privacy group accused the company of spying on user traffic, an accusation the company flatly denies. Finally, just this year, ZDNet uncovered a flaw in the company's software that exposed users. Fortunately, that was fixed immediately.