NordVPN s.a. Details
NordVPN s.a.
Panama City, Panama. • employees • Technology
Industry
Technology
Security Incidents
1
NordVPN is a leading cybersecurity company known for providing top-tier virtual private network (VPN) services. They prioritize user privacy and security, offering features like encrypted connections, no-logs policies, and protection against online threats. Founded in 2012, NordVPN has grown to serve millions of users worldwide, consistently being recognized for its reliable and user-friendly solutions.
Security Incidents
NordVPN s.a. Breach of Oct 2019
Show more
Severity Score
Moderate
Type
Data BreachSummary
In October 2019, NordVPN S.A. disclosed a security breach that occurred in March 2018, involving unauthorized access to one of its rented data centers in Finland. The breach was executed by an unknown threat actor who exploited an insecure remote management system left by the data center provider, which NordVPN was unaware of. The attacker managed to access a single server, but NordVPN assured that no user credentials, billing information, or other sensitive data were compromised due to the server not containing any user activity logs. The company emphasized that the breach was limited in scop...Show more
Severity
The breach was the result of hackers exploiting an insecure remote-management system that administrators of a Finland-based data center installed on a server NordVPN leased. This allowed the hackers to access secret crypto keys for NordVPN, indicating a severe breach of security.Impact
NordVPN confirmed that one of its servers was breached in March 2018, exposing some of the browsing habits of customers who were using the VPN service to keep their data private. This breach could have significant privacy implications for the affected users, potentially compromising their online activities.KEEP YOUR ENVIRONMENT SECURE
Weak credentials are the leading cause of breaches. Beyond Identity can help.
See MFA exploits in action
Watch how adversaries exploit companies in quick videos