Earlier today, VPN service PureVPN was dealt a dual blow a zero-day by malicious hackers exploit; as well as the mailing of a subsequent, phony email alleging a-data compromise and also accounts close. Uzair Gadit, the founder of the VPN tunneling support — which puts new ip-addresses to users’ connected apparatus, enabling them to gain access to the Internet in firewalled nations or to use services which are typically geo-restricted at their current places — informs us that there’s no problem with PureVPN. “Our VPN support is working 100% fine and there’s no interruption whatsoever,” he wrote in a e-mail.
While the organization is investigating the cause of the email, he continued, “we hereby affirm that, as we don’t save any of our users’ charge card nor PayPal tips in our on site databases, there has been no compromise in our users’ personal billing information.” Lots of business users need the service for doing a secure Onlinebackup when using public WiFis or to login to their company accounts.
The episode highlights while VPN solutions in many cases are regarded as safer routes for anyone concerned about information compromises, they are not protected from attacks themselves. Comprehension of the solutions could be particularly dangerous due to the fact they haven’t been protected to down from restrictive governments in the recent past, for example in this episode in China from Dec 2014. Read more here.
The PureVPN story was brought to TechCrunch’s attention by one among PureVPN’s clients who is located in China. Several hours ago, he sent over the letter that was following, noting that his account was shut, and that his bill advice had been handed over to regulators, who might be calling him in future:
A number of hours after, his first email was followed up with another, which noted that the earlier e-mail was bogus:
“We’re sending this note as a clarification,” the notice mentioned. “We WILL NOT BE closing down or do we have great legal problems of any sort. We’ve neither been called by any authorities or do we save our user’s personal information to tell anyone.” The firm claims that while the VPN support stays fully functional “protected to the greatest possible degrees of encryption,” it’s disabled the bill portal site and client region while it really is investigating the problem. The company is also posting updates.
We reached out regarding the two emails to PureVPN, and we were given about what has happened, a bit more advice by Gadit. Btw, PureVPN also has a SmartDNS trial.