- cross-posted to:
- technology@lemmy.world
- cross-posted to:
- technology@lemmy.world
Damn, didn’t know this. I thought they were pretty standup people, didn’t think the actual product quality would be left, so… wanting.
What did I miss?
Cure53 concluded their report by stating that they “…attempted to identify any potential methods by which a user’s VPN traffic anonymity or integrity could be compromised. No such issues were found, and no vulnerabilities affecting the core product were detected.”
Nothing, sorry, I was talking about windscribe in response to another comment in this thread.
Big oof. But if you have a lifetime subscription you can still use them. Just generate/download the configs and don’t use their client.
Yep and hope their servers dont have equally bad code.
Mullvad is the best VPN
So is he shitting on winscribe specifically or all commercial VPNs? Idk how to read into this. Is he saying Mullvad sucks too?
He says Windscribe sucks. Mullvad obviously not as they are regularly audited
Just something to keep in mind for those not in the security space. When a security company does an audit, its generally a checklist of commercial and custom security software along with a couple people poking around looking for more manual harder to find stuff. But there’s a reason companies like Mullvad have a bug bounty program… Just because cure53 didn’t find it, it doesn’t mean some bored hacker won’t…
Absolutely better than nothing though.
Thanks for the info
He claims all private VPN providers are similar bad but there is no proof, only some snippets from Windscribe which say nothing about other clients.
It’s like saying one person is lying, so must all others.
Maybe good points about Windscribe but bad generalization in terms oft arguments.