- Mar 25, 2021
- 515
Windscribe VPN Security Breach
- Thread starter SearchLight
- Start date
- Apr 1, 2019
- 2,868
This is interesting. Apparently that new server stack still wasn’t ready for an audit. Note: U/o2pb appears to be a Windscribe employee.
Last edited:
- Mar 25, 2021
- 515
well..... that is not a good sign
- Aug 12, 2015
- 1,314
It might sound weird, but I'll stick with Windscribe. They are very generous regarding free users (much more traffic and locations than competitors).
I'm using Windscribe just to access geoblocked content, nothing else. So I don't see particular reason why I should stop using it. For occassional use it's still great. It's not like I'm connected 24/7 to VPN.
I'm using Windscribe just to access geoblocked content, nothing else. So I don't see particular reason why I should stop using it. For occassional use it's still great. It's not like I'm connected 24/7 to VPN.
- Aug 21, 2020
- 609
Update. They switched to new server software real quick:
blog.windscribe.com
As a response to the feedback and pressure due to this event they will make WireGuard their primary protocol starting Fall 2021 and have an external audit to approve the changes. We will see.
OpenVPN Security Improvements and Changes
UPDATE — July 20th, 2021 We’ve completed phase 2 of the OpenVPN CA sunset process mentioned below. If you have trouble connecting and use the OpenVPN protocol, simply restart the app which will resolve the issue. There should be no impact/anything to do for most people. If you are
blog.windscribe.com
As a response to the feedback and pressure due to this event they will make WireGuard their primary protocol starting Fall 2021 and have an external audit to approve the changes. We will see.
Has there been any VPN provider who has not been hacked or had a security breach ?
If you ask me they should of emailed all of there customers too about it. No matter what it meant.
Though I know it is not there job to keep a customer updated on security news but it kinda is when it involves their own service.
Though I know it is not there job to keep a customer updated on security news but it kinda is when it involves their own service.
- Jul 3, 2017
- 626
Being reactive to a breach is not the same as being proactive to prevent a breach.
I think part of the problem is the operative words in their blog while "engaging with their provider" they were informed about the server seizure. In other words, it seems that they may not own some of their servers, and contract with third parties for operation.
Imo, a weak link in a "security" operation may be when you contract with third parties who may not consider security and/or communication as seriously as you.
Whether Windscribe overcomes this "breach" to rebuild our trust is to be seen. Stay tuned!
I think part of the problem is the operative words in their blog while "engaging with their provider" they were informed about the server seizure. In other words, it seems that they may not own some of their servers, and contract with third parties for operation.
Imo, a weak link in a "security" operation may be when you contract with third parties who may not consider security and/or communication as seriously as you.
Whether Windscribe overcomes this "breach" to rebuild our trust is to be seen. Stay tuned!
- Apr 1, 2019
- 2,868
I don’t think they own any of their servers. That’s pretty much all consumer VPNs. Just reselling bandwidth of some infrastructure provider.
- Sep 13, 2012
- 191
VPNs protect only traffic based in protocol;
antiloggers (comodo internet security, lmt antimalware, keyscrambler, spyshelter, zemana...) protect against leak data in level of application...
antiloggers (comodo internet security, lmt antimalware, keyscrambler, spyshelter, zemana...) protect against leak data in level of application...
- Mar 16, 2019
- 3,868
Please try not to post the same comment in every thread. Antiloggers is not the topic being discussed here. Post this type of comment in threads where it makes sense.
- Aug 21, 2020
- 609
No. Tbh there are only two types: The ones who admit having a breach and the ones who lie about never being hacked. But Windscribe was in the 2nd category until recently. I do not like their overly confident attitude. Windscribe was also arguing against WireGuard saying that all protocols are equally safe. I use Windscribe but I don't like their leadership's attitude towards users. They think they know better (and maybe they do), but it's annoying that their userbase has to push them to adopt new standards and security practices constantly.
- Apr 2, 2018
- 1,782
will you still use windscribe?
so it is safe to use windscribe now?Update. They switched to new server software real quick:
OpenVPN Security Improvements and Changes
UPDATE — July 20th, 2021 We’ve completed phase 2 of the OpenVPN CA sunset process mentioned below. If you have trouble connecting and use the OpenVPN protocol, simply restart the app which will resolve the issue. There should be no impact/anything to do for most people. If you are
As a response to the feedback and pressure due to this event they will make WireGuard their primary protocol starting Fall 2021 and have an external audit to approve the changes. We will see.
- Aug 21, 2020
- 609
I have always used IKEv2 and WireGuard. I would say reset your credentials and you should be fine. All servers are encrypted now. But the switch to pure RAM servers won't be until fall.
- May 26, 2014
- 1,339
Now that's the way you hold a company to account for their atrocious practices; dismiss the entire event and censure any dissidents. Brilliant!
- Nov 10, 2017
- 3,250
I've never connect to any Ukraine server since so am i good? is it safe for me?
- Aug 21, 2020
- 609
That's the question I have. How much information is on each server instance. Windscribe is not telling us which is suspicious.
On June 24th 2021 our monitoring systems alerted us that two servers in Ukraine had gone offline. When engaging with our provider for those servers, we were informed that the two servers had been seized as part of an investigation of activity that occurred 12 months prior. Windscribe VPN Security Breach: Servers and Private Key Seized | RestorePrivacy
Maybe I understand it wrong but they found out after 12 month that 2 servers are offline? That wouldn't inspire my trust in the monitoring systems used....
Maybe I understand it wrong but they found out after 12 month that 2 servers are offline? That wouldn't inspire my trust in the monitoring systems used....
- Jan 27, 2018
- 1,431
I'll keep using it as I get 60 gb a month free, I only maybe use it once or twice a week anyways. I don't think we'll ever know the whole story here so unless something comes out that confirms that using Windscribe is a serious threat then I'm not going to worry about it.
