We review vendors based on rigorous testing and research but also take into account your feedback and our affiliate commission with providers. Some providers are owned by our parent company.
Learn more
vpnMentor was established in 2014 to review VPN services and cover privacy-related stories. Today, our team of hundreds of cybersecurity researchers, writers, and editors continues to help readers fight for their online freedom in partnership with Kape Technologies PLC, which also owns the following products: ExpressVPN, CyberGhost, and Private Internet Access which may be ranked and reviewed on this website. The reviews published on vpnMentor are believed to be accurate as of the date of each article, and written according to our strict reviewing standards that prioritize professional and honest examination of the reviewer, taking into account the technical capabilities and qualities of the product together with its commercial value for users. The rankings and reviews we publish may also take into consideration the common ownership mentioned above, and affiliate commissions we earn for purchases through links on our website. We do not review all VPN providers and information is believed to be accurate as of the date of each article.

Latest News: Cybersecurity

Discord, the popular messaging platform primarily used by gaming communities, has now been blocked in both Russia and Turkey. The bans come as part of these governments’ broader efforts to tighten control over digital platforms, with the authorities citing concerns over illegal content. Millions of

Husain Parvez Published on 11th October 2024

FIN7, a notorious Russian hacking group, is using fake AI nude image generator websites to distribute malware, targeting individuals and potentially businesses. According to research from Silent Push, the campaign relies on the popularity of deepfake technology to lure users into downloading

Husain Parvez Published on 6th October 2024

Ireland’s Data Protection Commission (DPC) has fined Meta €91 million for storing millions of user passwords in plaintext. The issue prompted a regulatory investigation into Meta’s adherence to the General Data Protection Regulation (GDPR). Meta found in January 2019 that it had maintained

Anka Markovic Borak Published on 4th October 2024

University Medical Center (UMC) Health System in Lubbock, Texas, is dealing with the aftermath of a ransomware attack that crippled its IT infrastructure and forced the diversion of patients to other healthcare facilities. The breach, which occurred late last week, impacted key operations,

Husain Parvez Published on 2nd October 2024

A new strain of the Necro malware has infected over 11 million Android devices by exploiting vulnerabilities in apps from the Google Play Store and unofficial sources. Originally identified by Kaspersky, the Necro Trojan has evolved, spreading through malicious software development kits (SDKs)

Husain Parvez Published on 25th September 2024

Microsoft has raised alarms over a new wave of cyberattacks targeting the US healthcare sector, led by the financially motivated group Vanilla Tempest. According to Microsoft's recent post on X (formerly Twitter) regarding the issue, the group has deployed the INC ransomware strain in these

Husain Parvez Published on 23rd September 2024

Intel has issued a security advisory detailing over 20 vulnerabilities affecting various processors, and has urged users to update their systems. The vulnerabilities primarily impact Intel’s UEFI firmware, used in processors such as Atom, Xeon, Pentium, Celeron, and Core. These flaws can result in

Husain Parvez Published on 13th September 2024

In a recent campaign, GitHub comments are being used to distribute Lumma Stealer, a password-stealing malware. The campaign was first reported by a contributor to the teloxide Rust library, who shared on Reddit that multiple GitHub comments, disguised as fixes, were actually pushing malware.

Anka Markovic Borak Published on 7th September 2024

In an alarming series of cyberattacks, a North Korean hacking group known as Citrine Sleet exploited a zero-day vulnerability in Chromium-based browsers to steal cryptocurrency. The vulnerability, CVE-2024-7971, impacted popular browsers such as Google Chrome and Microsoft Edge and was swiftly

Husain Parvez Published on 5th September 2024