Trusting a VPN is a hard choice, but IVPN’s transparency goes a long way toward proving that its customers’ privacy is a priority. Founder and CEO Nick Pestell answered all our questions about the company’s internal security, and even described the tools the company used to limit and track access to secure servers. The top VPN services gave us a variety of answers to these questions, some of which were frustratingly vague. ExpressVPN was the only other company to outline these controls and assure us that these policies were well-documented and not half-practiced.
NordVPN operates servers in over 50 countries with 12 in Asia Pacific. Torrenting is allowed on all servers. It’s on par with ExpressVPN when it comes to unblocking streaming services. It can bypass the Netflix proxy firewall in the US and Australia alike. It keeps zero logs of any kind and is based in Panama, where it is not subject to any data retention laws. NordVPN also offers special servers optimized for privacy and high-speed downloads, such as ultra-fast streaming, double hop VPN, Tor over VPN, and anti-DDoS.
The second thing that happens is that the web application you're talking to does not get to see your IP address. Instead, it sees an IP address owned by the VPN service. This allows you some level of anonymous networking. This IP spoofing is also used to trick applications into thinking you're located in a different region, or even a different country than you really are located in. There are reasons (both illegal and legal) to do this. We'll discuss that in a bit.
NordVPN does not have any limitations imposed on its users in terms of traffic. A constant speed is used, but you should be aware that VPN services tend to be a bit slower than regular Internet speeds. The company has set up UDP (OpenVPN) which automatically chooses the closest available server for you. However, some users report that the speed is slower than that of some competitors.
Israel-based Hola isn’t a traditional VPN in which customers connect to a network of centralized servers owned by the VPN company. Instead, Hola users connect to each other, using other users’ idle bandwidth as part of a large peer-to-peer network. Obviously, this comes with some pretty big security and legal concerns. Users could use each other’s internet for illegal activity, for example. In 2015, Hola used its user’s computers to create a botnet and perform a massive distributed denial-of-service (DDoS) attack. The abuse of customers’ trust happened entirely without their knowledge.
A VPN encrypts all of the Internet traffic between your computer and the VPN server, preventing anyone on your local network, or connection points along the way, from monitoring or modifying your traffic. Beyond the VPN server (in other words, on the rest of the way to whatever Internet server you’re connecting to), your traffic mixes with traffic from other people on the VPN and the rest of the Internet. Ideally, that makes your traffic traceable only to the VPN server, not to your home, office, or computer. You can read a more detailed explanation in our post about what a VPN is and when using one makes sense.
Likewise, if you're connecting via a nation's local carrier, that carrier may be intercepting your traffic, particularly if you're a non-native of that nation. In that situation, if you must connect back to applications and services at home, using a VPN is quite literally the least you can do. Also, keep in mind that if you use your phone's hotspot to connect your computer to the internet, you'll want to use a VPN on your computer as well.
I supported them on their starts but it was a mistake, they are running vpn traffic through your computer, even if you have premium this is what they does. I always got slow speed, they always had [REDACTED] support making excuses worst service ever, not speaking of leaking your dns, crashdowns without any warnings so your entire traffic is unprotected. complete bs service
Many installations treat external VPN clients as fully trusted internal hosts. I recommend that you create a second class of VPN user that doesn't have the full privileges of a local host and that can access only the resources that a user of that type requires. Don't give these users access to printers or shares that they don't need for external work.
Prices are also pretty low. Expect to pay £63.58 for a year (equivalent to £5.29 a month), or £53.48 for a two year subscription (equivalent to £2.23 a month). Based on current rates, the standard monthly fee works out at £5.33, so if you want to save, the two year option is your best bet. Alternatively, you can pay using Bitcoin, Bitcoin Cash, Zcash or gift cards.
While a VPN can protect your privacy online, you might still want to take the additional step of avoiding paying for one using a credit card, for moral or security reasons. Several VPN services now accept anonymous payment methods such Bitcoin, and some even accept retailer gift cards. Both of these transactions is about as close as you can get to paying with cash for something online. That Starbucks gift card may be better spent on secure web browsing than a mediocre-at-best latte.
ExpressVPN operates servers in 78 countries, 20 of them in APAC alone. Torrenting is allowed on all servers. It’s consistently performed well in our unblocking tests and our speed tests so is a good option for streaming. It can unblock both the US and Australian Netflix catalogs in a browser as well as in the Netflix app. It keeps no traffic logs and is based in the British Virgin Islands, where it is not subject to any data retention laws. ExpressVPN makes apps for Windows, MacOS, Android, iOS, Linux (command line) and some wifi routers.
The IVPN app’s default settings are great for most people, who should be happy just smashing the Connect button and not fiddling with settings. The desktop app defaults to a secure OpenVPN connection with AES 256-bit encryption (what we consider the standard at this point), and the mobile app can (and should) be toggled to OpenVPN as well. Our budget pick, TorGuard, defaults to the weaker (but also acceptable) AES 128-bit encryption unless you manually change it, and hasn’t added OpenVPN support on its iOS app.
The first step to security is usually a firewall between the client and the host server, requiring the remote user to establish an authenticated connection with the firewall. Encryption is also an important component of a secure VPN. Encryption works by having all data sent from one computer encrypted in such a way that only the computer it is sending to can decrypt the data.
Giving a tough competition to other budget-friendly providers, Surfshark has made an impressive entry into the market. We took around 10 hours to review the service properly, and needless to say, we were quite impressed. The provider is based in the British Virgin Islands (a VPN-friendly jurisdiction). BVI is free of all sorts of data retention laws, so you can rest assured of your data being secure.
Here's the problem with the internet: It's inherently insecure. When the internet was first designed, the priority was to be able to send packets (chunks of data) as reliably as possible. Networking across the country and the world was relatively new, and nodes often went down. Most of the internet's core protocols (methods of communicating) were designed to route around failure, rather than secure data.
Surfshark might not be a market leader, but it does not fall behind in any aspect. This provider can stand its ground well when compared with even the Top tier services. You receive a respectable number of server locations, good streaming capabilities, and excellent encryption. To be completely sure of the service though, conducting a complete privacy analysis was necessary. You will feel glad to see the results below, which indicate that we are located in Russia! This includes changes in local IP address, public IP, or DNS!
If you’re going to use torrents, however, life is easier if you use a VPN—especially if the network you’re on blocks torrenting. There are many VPNs among our top picks that could be used for downloading torrents, but our preferred choice is Private Internet Access. This no-frills VPN has an absolute ton of servers, good speeds, and a nice amount of country locations to remain relatively anonymous. (Read our full review.) The price is right at less than $40 a year, and its privacy policies have been tested in court. Plus, advanced users can adjust their level of encryption for data encryption, data authentication, and handshake.
What makes NordVPN stand out in terms of security can also be applied for making it a real private network. NordVPN’s privacy standards are highly advanced, such as the Onion Over VPN feature, which includes the TOR network service as another layer of privacy. The VPN’s double encryption makes it impossible for a middle-man to see what is transferred through the tunnel. In case of any intrusion, there is also a kill-switch, which is an added bonus we welcome whole-heartedly. NordVPN also utilizes an anonymized login policy that conceals your identity further, making the service privacy-friendly.
This helps in streaming seamlessly by unblocking sites like Netflix US, Amazon Prime, HotStar, Hulu, BBC iPlayer, among others. For complete anonymity, you even have 80,000+ static IPs with the choice of purchasing dedicated IP VPN for a $5 additional charge. Security is available through 256-bit AES encryption, 2,048-bit RSA keys, and MD5 HMAC authentication.
With regards to pricing, Surfshark tends to be incredibly cost-effective and wallet-friendly. The monthly plan starts off with incredibly high pricing at $11.95 and its a bit of a bummer. But the plans with longer subscription durations are priced much more reasonably. For instance, the 6-months plan, gives you a 65% discount, reducing the pricing to $8.99 per month. If you go for the yearly plan, you only pay $5.99 per month, which totals to $71.88 every 12-months. The best part of all: you have a 30-day refund guarantee available.
After you choose your VPN, you must install and maintain it correctly to enjoy all the benefits a VPN can provide. In addition to using a sufficiently long key length, you must properly secure keys and access to VPN concentrators. If you store your keys in plaintext files on Internet-connected computers, all the bits of key length in the world won't help you if someone compromises those computers. You should also change your shared base keys on a regular basis, preferably every 3 months. This practice limits your exposure if a key is compromised.
Features you gain access to include DNS Leak Protection, Automatic Kill Switch, and Onion Over VPN. For advanced technologies, you have DoubleVPN, which passes all network traffic through two servers located in different countries. CyberSec that blocks cyber threats, harmful websites, and malware from spreading on your devices. SmartPlay that allows for instant and seamless streaming!
Make sure when allocating VPN connections that the remote computers meet the same security requirements as computers on your local LAN—stricter, if possible. At a minimum, all remote VPN clients should have antivirus software and firewall software to offer some minimal protection, although some personal firewall software can interfere with some VPN client software. Include VPN client systems, such as home computers, field laptops, and partner and vendor machines, in all security assessments or vulnerability scans that you perform. You can check them the same way you check your local machines by making sure your remote VPN clients are logged on when you do your security testing and including the VPN IP range in your tests. Just make sure you get permission before you scan any machines your company doesn't own. If you use Active Directory (AD), you can also push out a standard security policy to your Win2K or later VPN clients to make sure that they conform to the policy for machines on your network.
This is also a good way to provide support for more than one family member on a single subscription. Generally, there's no good reason for a VPN provider to allow less than two or three connections. If your provider only allows one, find another vendor. We gave extra points in our VPN directory to those vendors who allowed three or more connections.
Hi Nathan, We do not censor feedback, and if that is your experience then it is your experience. I'm sorry that you seem to have had so many problems. All I can say is that for me it was just a matter of installing the software, entering my account details, choosing a server location, and hitting start. I have experienced the odd hiccup in the past, but as far as could I see all issues have now been resolved. I tested using Windows 10 (plus Android and both Mac clients). If you are finding everything too hard, then why not just take advantage of the 30-day money back guarantee and try something else?
Usually, it's the free services that throttle your usage in these ways. Some paid services will offer a trial, where you can transmit up to a certain data cap before being asked to sign up as a paying customer. That's actually pretty cool, because it gives you a chance to try out the performance of their service before paying, but it also gives the vendor a chance to make the money necessary to operate the service.
Even if a company is at fault for deceptive marketing practices, it still has to comply with legal requests for whatever information it does have. Jerome told us, “In the U.S., however, there is a big difference between a request for data regularly stored for business purposes and a demand that a company retain information. VPN providers are not required to keep records just in case law enforcement might need them some day.” That means many companies could provide a list of their customers, but if they practice what they preach when it comes to no-logging policies, innocent customers looking for privacy shouldn’t get swept up in these requests.
Even though Tor is free, we don’t think it’s the best option for most people. If you aren’t familiar with Tor, this handy interactive graphic shows how it protects an Internet connection, and this series goes into more detail about how Tor works. Runa Sandvik, a former researcher with The Tor Project who is now part of the information security team at The New York Times (parent company of Wirecutter), described it as “a tool that allows users to remain anonymous and uncensored.” When we asked expert Alec Muffett about whether he personally used a VPN, he told us he actually spent most of his work time using Tor. But Tor has a reputation for slow connections, can be blocked by some websites, and isn’t suitable for some peer-to-peer applications like BitTorrent.
L2TP/IPsec (Layer 2 Tunneling Protocol with Internet Protocol Security): L2TP is not secure itself, so it's generally paired with the IPsec secure-networking standard. The combination of the two was once thought to be very secure when properly implemented, but some VPN services suggest that you use OpenVPN instead. L2TP/IPsec has native support in Windows, OS X/macOS, Android, Chrome OS and iOS. Most VPN services support it.
If you already subscribe to AVG services and you want a name you can trust, then AVG Secure VPN may be right for you. Its no-logging policy is a definite plus for those seeking privacy while browsing online, and its straightforward, easy-to-use interface is a great option for those who want something simple. But if you’re looking to go deep undercover, keep shopping around. There are other VPN providers out there with tougher encryption keys and more servers at a lower price.
Finding the best free VPN is an exercise in balancing those restrictions. TunnelBear, for example, lets you use any server on its network but limits you to 500MB-1GB per month. Avira Phantom VPN lets you use as many devices as you like and any server you like, but also restricts you to 500MB per month. AnchorFree Hotspot Shield also places no limits on the number of devices, but restricts you to 500MB per day and only US-based servers. Kaspersky Secure Connection also doesn't limit your devices but doesn't let you choose a VPN server—the app does it automatically.
ExpressVPN’s “#1 Trusted Leader in VPN” claim may be a bit difficult to prove, but the service offers a compelling list of features nonetheless. It also constantly tries to make consistent improvements in speed and simultaneous streaming capabilities, and with support for all major platforms (Windows, MacOS, Android, etc.), you won’t need to worry about compatibility. ExpressVPN shows up on a number of “best VPN” lists, and so its relatively high prices are justified.
With endpoints in 18 countries, Kaspersky Secure Connection can be set up so that it connects automatically, connects to an endpoint in a certain country by default, or seeks to establish a connection whenever you connect to an insecure Wi-Fi hotspot. You don’t, however get an automatic killswitch, so if your VPN connection goes south, you won’t be automatically disconnected.
It reduces the monthly pricing all the way down to $3.29 by giving you an amazing 72% discount! Best part of all: you have a 30-day refund guarantee available. This means, if you do not feel comfortable using the VPN, you can always request for your money back. Once you subscribe to NordVPN though, you gain access to a huge list of 4452 servers in 62 countries worldwide. They come in handy for unblocking VoDs or engaging in P2P.
Their best plan is 1-year subscription plan: $6.99 ($83.88). While their monthly price of $11.95 is at the high end of the spectrum (and they did lose a few points for that), their yearly price of $83.88 is lower than most our contenders. And yes, they also have a full 30-day refund policy. NordVPN also offers a dedicated IP option, for those looking for a different level of VPN connection. They do offer $2.99/month (75% discount) for a 3-year plan .