VPN - Organizer

Howdy VPN review 2024

6:32 pm | July 26, 2024

Author: admin | Category: Computers Gadgets Pro Security | Tags: VPN | Comments: Off

Howdy VPN is a confusing service, to say the least. The free VPN doesn't offer anything close to a traditional VPN provider at first glance – and the more I dig, the more I'm convinced that you should leave Howdy VPN alone. Keep reading, and I'll explain why it can't compete with today's best VPN services.

HowdyVPN: the basics

First off, let's go over the basics. Who is behind Howdy VPN? Unfortunately, I don't know.

Combing through the terms of service, privacy policy, and disclaimer only told me that the company is seemingly based in the Netherlands – or is at least subject to Dutch law. Beyond that, there’s not much more to know. The website itself is registered in Indonesia and you can reach out via a single Gmail address, but that's all I could find. It's not a great start.

I was expecting to find a traditional VPN provider, but as soon as I landed on the Howdy VPN website I realized I was looking at something entirely different. The website is light on details, but offers a few services you wouldn't expect to see side-by-side with each other.

Figuring out who Howdy VPN is for isn't straightforward, either. The VPN offers free networking services – which means there's a free VPN and a free VPN service, free RDP service, and something called "Find SNI", which initially perplexed me.

Each page offers virtually no information about what these tools do. Instead, they're bloated with loads of unrelated Chat-GPT-generated text about cryptocurrency and VPNs. Needless to say, this isn't very user-friendly. If you're not already aware of what these tools do, Howdy VPN won’t be of any help to you whatsoever.

Howdy VPN: features

Howdy VPN's selection of features worries me – it's like the VPN is throwing everything at the wall to see what sticks. So, with that in mind, I decided to take a closer look at the VPN tool.

There are actually two on offer – Howdy VPN and "Trojan VPN", which immediately rang some alarm bells. Upon closer inspection, I can see why it's called this, but it's still worrying.

Howdy VPN offers two free VPNs. The default VPN is available for seven days from the point you sign up for it, with unlimited bandwidth and a "no-logs" policy that I'm not entirely confident in.

The "Game" VPN provides lower latency at the cost of reduced maximum speeds and is available for thirty days instead of seven. Either way, you'll see a list of servers you can scroll through to see where each is located and the total number of users connected to the server.

Once you've clicked through, you'll be presented with an options menu that allows you to set your username and password for the VPN, along with something called an "SNI" or "Bug Host". I'll dig into this more when I cover the SNI finder but, for now, clicking through the remaining options generates an OpenVPN config file that you'll then need to load into a third-party client.

Howdy VPN doesn't actually offer a VPN client of its own – and I think it's a little misleading to call it a VPN provider.

Then, there's the Trojan VPN based on TrojanGFW, an obfuscation service designed to evade deep packet inspection by tunneling your VPN traffic through an HTTPS tunnel. I was suspicious, seeing as Howdy VPN also offers "free RDP" services, that this was a Remote Access Trojan service, but it's relatively harmless. There's a quota system in place of a timed lockout, so when you sign up for a Trojan VPN server you'll only get around 30 GB or so of data before your account details stop working.

The VPN service requires you to visit a separate site that doesn't seem to be working, so I can't comment on it. Howdy VPN does have a bunch of additional servers with a bunch of obfuscation guarantees, including RDP servers that let you connect to a remote desktop to use as a proxy host.

However, the tool that really caught my eye was the "Find SNI" option.

Howdy VPN: Find SNI

There's hardly anything on the Howdy VPN website about what Find SNI is or what it does. In fact, the provider is weirdly coy about the tool, stating:

"We know you need this, but we can't show it to just anyone to make sure it will last longer so you'll have to figure out how to use this feature."

The Find SNO tool itself gave me a list of partially censored host names and, upon clicking through to one, I was presented with a captcha. Completing the captcha uncensored the host, giving me a full hostname and data about whether the IP associated with it was accessible, and a set of HTTP response headers. Weird. Really weird.

I managed to put two and two together after some digging and found what Howdy VPN was actually offering as a website. To give you the relevant context, I need to touch on bug hosts and how ISPs connect you to the internet.

When you connect to an ISP, your account is granted access to the World Wide Web – so long as you have a valid subscription. If you avoid paying your ISP bills for long enough, it'll cut off your internet connectivity. However, because your ISP does want you to pay your bills (and pay them as soon as possible), the username and password tied to your router will still be valid – it's just that your internet has been restricted so you can only access your ISP’s home page. All the requests you make to other hosts are processed by your ISP and dropped.

You'll see something similar if you try to access the internet without a data plan on mobile data, or if you're accessing a paid public router. Only certain websites are accessible without a subscription. I'll call these "zero-rated" websites, but they can be all sorts of different pages available for different reasons: think public health sites, government portals, and CDN hosts.

The important thing to note is that your ISP will allow you to connect to them without paying a subscription.

Here's where it gets tricky. The "SNI" I've been talking about is the Server Name Indicator and a key part of the TLS transaction that tells the server you're connecting to which website you want to visit. This makes SSL certification bookkeeping easier for servers that host multiple sites on the same IP, but that's not why we care about it today. Remember, you're advertising which hostname you want to connect to ahead of time. The ISP will read it and authorize your connection if it's to a zero-rated site, or drop the traffic otherwise.

What sites like Howdy VPN allow you to do is create a TLS connection through an SSL VPN that spoofs your traffic – making it seem as though it's heading to a zero-rated website through the SNI indicator before being sent on to the real destination by the VPN server. This is a massive violation of your ISP’s ToS by the way, if not outright illegal.

In the context of offering completely free VPN and VPS servers, I have no doubt that there's something weird going on here.

There's no third-party audit to validate Howdy VPN's privacy policy and, as a result, I'd have to assume that it's logging your traffic by default. In fact, there's no mention of what happens to the data that's passed through the free VPN servers – and I think this is a total failure to make explicit what it is you're giving up in return for the free service.

Howdy VPN: verdict

When I dug a little deeper into who actually providers Howdy VPN, I found two more websites: fastssh.com, which hosts most of the tutorial content for Howdy VPN on a separate blog space, and sshkit.com, which offers similar services.

There's a whole web of free VPN and SSH services associated with each other that all seem to do the same thing, all seemingly kept alive by aggressive website marketing popups and ad marketing agreements with Google.

As far as I can tell, it all falls under the ZXC brand, which operates several websites from the same hosting cluster in Indonesia. I can't say whether ZXC is just monetizing additional excess server capacity or up to something more nefarious – but if everything I've covered so far hasn't been enough to put you off, then let me make it clear: don't use Howdy VPN.

The complete lack of transparency surrounding the site, alongside some really suspect services and a total disregard for normal monetization practices, means I wouldn’t touch the service with a ten-foot pole. Plus, it looks like you can only sign up for Howdy VPN via telegram, which is the icing on the cake.

I'd instead recommend that you check out a legitimate VPN service that won't sell your data as soon as you fork it over – like NordVPN.

NordVPN is the polar opposite of Howdy VPN in about every way I can think of. You'll get top-not encryption that'll keep personal data out of the hands of snoopers, an audited and airtight privacy policy, and some of the fastest speeds I've seen a VPN hit. Plus, if you're in the market for a streaming VPN, NordVPN leads the pack – and you can try it for yourself with its 30-day money-back guarantee.

Alternatively, if you'd rather stick to a free VPN, there are much better options out there. Proton VPN (designed by the minds behind Proton Mail) is a privacy-focused service that offers unlimited data with no catches; no ads, no tracking, just a really, truly, free service. The caveat is that you'll only have access to servers in three locations, and it's not as fast as other premium providers, but Proton VPN's free tier is more than enough for anyone wanting to shore up their digital security as they go about their day-to-day browsing.

AngelVPN review – expert analysis in 2024

9:27 pm | July 12, 2024

Author: admin | Category: Computers Gadgets Pro Security | Tags: VPN | Comments: Off

AngelVPN is a relative newcomer to the VPN industry, having only established its presence in the last two years.

Still, while it lacks the extensive history of industry giants like NordVPN and ExpressVPN, Angel VPN has carved a niche in a very competitive marketplace as a budget provider with power.

In this review, I'll showcase the surprising strengths of AngelVPN, such as its speed and unblocking capabilities, as well as a few issues you'll want to be aware of being committing to a subscription.

About AngelVPN

AngelVPN, established in 2022, is headquartered in London. The UK isn't an ideal place to host a VPN company, unfortunately - after all, it's one of the primary members of the Five Eyes data-sharing alliance.

This raises several questions about how well AngelVPN is able to deal with law enforcement requests and targeted spying from intelligence agencies.

I'll get into the details a little later, but his potential government interference combined with a less-than-stellar privacy policy means that AngelVPN might not be your ideal provider if you want to prevent third-party snooping in an overzealous surveillance state.

On a more positive note, AngelVPN has servers in 67 countries, and more than 80 locations, and even boasts coverage across 13 points in America.

Normally, I'd say this puts AngelVPN squarely in the middle bracket when it comes to server networks, but I noticed a few interesting locations in the server list.

In addition to plenty of spots in Europe, like the UK, France, Italy, and Germany, there are a few lesser-covered regions listed, including Russia, China, Brunei, the British Virgin Islands, and the Cayman Islands. This kind of spread is pretty rare, so if you need a VPN that can unblock content in these locations, AngelVPN might be worth a look.

AngelVPN pricing plans

Like most VPNs on the market today, AngelVPN offers a monthly subscription plan and some discounted long-term plans which significantly reduce the price.

A monthly plan costs $9.95. This is fairly cheap for a top-tier VPN but no extra features are bundled into the subscription – you just get the VPN.

Going for the 6-month plan knocks the price down to $3.33 per month for a total cost of $19.99. While this represents a 66% reduction in the monthly cost, buying the 12-month plan only reduces the cost by another 6% or so for a monthly cost of $2.83 and a total of $33.99.

Each AngelVPN plan comes with a 30-day money-back guarantee that allows you to test out the service before you commit to a subscription.

I was a little worried when I checked out the Terms of Service on the app and saw that it said no refunds would be processed, but after confirming with AngelVPN staff, and processing a refund based on the money-back guarantee, I'm happy to say it’s a legitimate promotion.

AngelVPN also supports a range of payment processors. In addition to the usual credit and debit card providers, there's support for Paypal, GooglePay, and a range of cryptocurrencies through BitPay, including Bitcoin, Ethereum, and Litecoin.

Privacy and security

AngelVPN is a mixed bag when it comes to privacy. There's nothing to complain about on a technical level – and, in fact, AngelVPN scores above-average marks in terms of VPN protocol support.

The Windows desktop app uses IKEv2 by default, which is a little unusual but definitely not a negative. IKEv2 is known for providing fast, high-security connections, but it's usually favored by MacOS and iOS devices.

There's also WireGuard support, as well as OpenVPN over both UDP and TCP. All three of these protocols are battle-tested and open-source, so you shouldn't have any concerns connecting to the internet.

I put AngelVPN's kill switch through its paces, too, in a series of stress tests designed to see if data would leak while the VPN is disconnected. I'm happy to report that it performed well in all cases. One caveat is that the kill switch only works while the VPN is connected. If you choose to disconnect manually while the client is open, it won't protect you.

One of the primary concerns I encountered with Angel VPN pertains to its privacy policy. Despite claiming to be a strictly no-logs provider, a closer inspection of its privacy policy reveals that it retains several significant data points that could potentially compromise your anonymity. These include details such as the user's city, ISP, connection timestamps, and the specific server being accessed.

While Angel VPN states that it does not record the contents of user connections, the retention of such information could still potentially lead to user identification if a third party was able to access the data, especially in the event of a request by law enforcement. Given that AngelVPN is headquartered in the UK, which has a less-than-stellar privacy reputation, it's entirely possible.

I raised this issue with AngelVPN's support staff. In response, they indicated to me that they have intentions to commission a third-party audit of both their privacy policy and server architecture in the near future. This is a positive step forward, as an independent audit will provide clarity on how AngelVPN captures data and potentially lead to revisions in its privacy policy.

However, it remains to be seen how this audit will impact its approach to user privacy. If online anonymity is your main concern, it may be worth holding out on AngelVPN until its privacy policy is updated following a third-party audit.

Netflix and global stream unblocking

AngelVPN works with every streaming site I tested, including Netflix in several regions (America, Japan, Canada, and the UK), Disney+, Amazon Prime, and Hulu, as well as regional streaming services such as BBC iPlayer, ITVX, and All 4.

In all cases, accessing the streaming service was instant. No buffering, no stalling mid-way through an episode, and no lockout screens. AngelVPN boasts that its services are optimized for IPTV, and it's evident from its performance that it's able to keep up with some of the bigger VPN providers when it comes to unblocking and streaming.

AngelVPN performance

AngelVPN impressed me with its performance – especially when you consider that it's a cheap VPN. To test its speed, I connected to the UK London server using a 100 Mbps connection, with the actual speed test being carried out by Ookla Speedtest.

Connecting over OpenVPN gave me download speeds of 63.85 Mbps and upload speeds of 20.89 Mbps. These speeds are more than enough to connect to a 4K streaming service without buffering or lag – even with other users on the same connection.

The only real complaint I have is that connecting or changing servers using AngelVPN took slightly longer than I expected, but your mileage may vary.

AngelVPN apps

AngelVPN is available on all major platforms, including Windows, MacOS, Android, and iOS. Rather surprisingly for a smaller VPN provider, there's also a Linux client with a full GUI that works as well as the other desktop clients.

The desktop app itself is pretty unremarkable. It's functional, but there's nothing here that would wow anyone who’s used a VPN before. It's simple and easy to set up, with a minimalist design that requires just a single click to get online. The P2P servers are clearly marked when you check out the location list, which is nice, but it'd be better to have a separate P2P tab.

AngelVPN customer support

AngelVPN's support is also better than I would've expected. The support staff stole the show – all of my queries got quick responses via the 24/7 live chat system and email. Each agent I chatted with was polite and knowledgeable, willing to have an in-depth discussion with me about both the scope of the VPN's streaming support as well as the shortcomings of its privacy policy.

Apparently, AngelVPN prides itself on having highly visible support channels and, as such, maintains an active presence on social media platforms like Facebook, Twitter, LinkedIn, and Instagram. I like email tickets better, but if you've got a different preference, AngelVPN has you covered.

The AngelVPN support library is pretty extensive, too, and has Quickstart guides for all platform applications. The apps aren't hard to use, but it's great to see each function clearly documented in the support library, as well as an FAQ section that covers questions about billing and AngelVPN’s service, too. There's even a guide on how to retrieve your credentials for OpenVPN if you want to set up your own third-party app.

AngelVPN alternatives

ExpressVPN

ExpressVPN is a great pick for unlocking geo-restricted streaming content such as Netflix, DAZN, Disney+, HBO Max, and Peacock. With a huge server network covering over 100 countries, it's one of the most expansive VPNs on the market. No matter where you're connecting from, ExpressVPN's ability to bypass geo-blocks ensures you'll be able to access a wide range of content from different regions. This is all powered by its proprietary Lightway VPN protocol, which delivers high-speed connections for uninterrupted streaming. ExpressVPN also guarantees a strict no-log policy, which is regularly audited by KPMG to demonstrate that ExpressVPN really doesn't hold on to your data.

NordVPN

NordVPN is another exceptional choice if you're looking for top-tier security and high-speed performance. In addition to its ability to effortlessly unblock content worldwide, NordVPN integrates cutting-edge security measures to safeguard you from online threats. With its innovative Threat Detection integrated scanning service, NordVPN continuously monitors incoming traffic for non-malware files, providing proactive alerts to preemptively protect your device. NordVPN also comes with Meshnet, which operates as a decentralized network that enables peer-to-peer communication and file sharing without relying on traditional centralized servers. It's all powered by NordVPN's high-quality VPN tunnels, so you can chat and send files safely in the knowledge you're protected by the highest standard of encryption.

Surfshark

Surfshark has a flexible subscription policy, allowing you to safeguard an unlimited number of devices under a single account. It's also got an extensive suite of tools designed to enhance the VPN for additional security. With Surfshark One, you get a comprehensive three-pronged solution to protect yourself from viruses, malware, data leaks, and privacy threats. Surfshark Antivirus shields your devices from viruses and malware with real-time protection and customizable security features. Then there's Surfshark Search, which allows you to perform web searches in complete privacy, free from ads, logs, and trackers. Finally, Surfshark Alert notifies you of personal data leaks in real time, helping you prevent potential damage before it's too late.

Private Internet Access

Private Internet Access easily matches the speed and power of other top vendors. It's one of the only top-tier VPN vendors in the industry to offer a fully-featured Linux client with a GUI, offering the same experience as AngelVPN but with more features. It also offers unique features such as anonymous purchase options for dedicated IPs, enabling access to sites that commonly block VPNs. Its "MACE" blacklist also effectively blocks ads, trackers, and malicious sites, further enhancing your privacy. If that wasn’t enough, PIA's commitment to a strict no-logs policy has been proven by several third-party audits and in court.

AngelVPN review: Final verdict

AngelVPN is a budget provider that punches above its weight in key areas. While it's not quite as feature-rich as Surfshark, or as globe-spanning as ExpressVPN, it's a quality VPN posed at a price that won't break the bank. If you're trying to watch IPTV or streaming services while abroad, you could do a lot worse.

However, if you're looking for a rock-solid VPN that comes with some extra security capabilities you won't find anywhere, I recommend you give NordVPN a shot.

TechRadar rating: ⭐⭐⭐½

How we test VPNs

Beside using the top recommended VPNs for our daily activities, we also conduct a thorough analysis of the top 30 VPN services every 6 months to keep track on how the software compares with other providers as new developments come in.

We start by reviewing each provider's website to double check if its claims and offering changed. We also look for any tracking cookies on the site and if/when they activate to see if the service tracks people using the site.

We then install and use each VPN service across a wide range of location servers and devices to see how they perform across the board. We go through all the settings to make sure all the features work as promised, while playing around with encryption protocols.

Our reviewers actively challenge the software, too, in the lookout for any flaws. For example, we purposely make the VPN connection drop so that we can test if the kill switch does its job of preventing data leaks correctly.

From speed connections and streaming unlocking results, to customer support and app usability, we regularly make sure to test every aspect of the software that could affect the experience of our readers.

As issues arise during our testing, we make sure to investigate these even by digging into the source code or the contents of its RAM if necessary. Head to our dedicated VPN testing methodology page if you want to know more.

Tested by

Meet the experts behind our AngelVPN review:

Amnezia VPN review 2024

6:45 pm | May 31, 2024

Author: admin | Category: Computers Gadgets Pro Security | Tags: Iran, VPN | Comments: Off

Amnezia VPN review - quick menu

1. About the company
2. Pricing
3. Privacy
4. Protocols
5. Setup and configuration
6. Anti-censorship tools
7. Performance
8. Conclusion

I’m usually quite suspicious of free VPNs, especially ones with such bold claims about their privacy stance. Usually, all it takes is a visit to their privacy policy to find that the VPN is subsidized by intrusive data-scraping or, even worse, ads inserted directly into your browsing traffic. When I saw that Amnezia VPN advertised itself as a free service, I immediately started looking for the catch.

I was pleasantly surprised by the fact that Amnezia VPN seems to be taking a totally different approach. It’s an open-source solution built by a Russian team in collaboration with Privacy Accelerator, an organization dedicated to funding and developing privacy tools for use inside Russia. Without diving too deeply into the politics, Russia’s increasingly hostile stance towards free speech necessitates the use of the best VPNs around to communicate without worrying about prying eyes reading over your shoulder - or worse.

About the company

The Amnezia team released a completely open-source and decentralized VPN solution to combat Russia's harsh censorship. It isn’t decentralized in the Web 3.0 sense of the word, where everyone contributes their bandwidth to a single VPN network, but decentralized in the true sense of the word: there is no “Amnezia network”.

Let’s get this out of the way: Amnezia is not a one-click VPN solution. In fact, the Amnezia team doesn’t host their own servers at all. They’ve instead released a VPN product that allows you to deploy your own customized VPN server on the hosting site of your choice. While they recommend several known hosting providers, including Amazon AWS and Digital Ocean, you’re entirely free to pick whichever host you want. In theory, you should even be able to host a VPN off of your domestic internet connection.

So, if Amnezia doesn’t host a VPN service for you, what does it do? Well, Amnezia takes a lot of the difficulty of running a secure VPN server out of your hands. If you’re worried about a third party reading the data you route through a VPN, Amnezia lets you take back control by running your own VPN server. As long as you trust your host, you’re in complete control of how your server works.

Amnezia VPN pricing

Amnezia is completely free—that’s free as in free speech, and the client and server source codes are available on the GitHub repository for anyone to download. You don’t need to pay a penny to download the product and you’re able to modify and redistribute it as you wish.

Amnezia is also licensed under GPLv3, which means that it’s a breach of the license to use the Amnezia code as the basis for your own paid white-label VPN service. Other than that, you’re free to do anything you like with the code as long as you continue to distribute it with a GPLv3 license and don’t charge users.

The Amnezia project is funded by a combination of donations from various sources and contributions from non-profits through the Privacy Accelerator project. If you’re interested in chipping into the project, you can subscribe to the Amnezia Patreon or donate through Bitcoin, Monero, or Payeer.

Does Amnezia VPN offer privacy?

The real appeal of Amnezia is unparalleled control over your data. Even the most bullet-proof VPN solutions require you to trust your provider to protect your data from external hackers and their own employees. With Amnezia, you can pick the server host you have the most confidence in, and keep the administration of your own VPN server entirely in-house.

I particularly like how Amnezia handles DNS leaks. If you’re using a VPN while browsing the web, and if your DNS requests are still going through your ISP’s DNS servers, you’re actively disclosing the domain of every website you visit to your ISP (and thus, the government). Amnezia solves this issue by providing an interface allowing you to install your own DNS server on your hosting of choice, minimizing the amount of data you leaking while browsing.

Plus, Amnezia isn't interested in keeping, collecting, or storing logs, claiming:

"You have full control over your data. The app does not collect or transmit any statistics, logs, or other information about users or their data."

Amnezia VPN logging and privacy statements — (Image credit: Amnezia VPN)

Amnezia VPN protocols

When you’re installing Amnezia, you’re presented with a choice of server settings based on the severity of censorship in your country. It's pretty much just a novel way to pick the protocols installed on your VPS by default, but, it's nice to see that it’s couched in language a non-specialist will understand.

Disclosing that you’re under extreme censorship will install OpenVPN over Cloak, medium censorship uses a hardened version of WireGuard, and low censorship will install default WireGuard.

Choosing to install your own VPN protocol instead lets you choose between default OpenVPN, OpenVPN over ShadowSocks, and IKEv2. All of these protocols are highly secure but differ in terms of connection speed and how obviously they appear as VPN traffic when analyzed.

IKEv2, OpenVPN, and WireGuard are all easily detected by basic deep package inspection (DPI) techniques and, as such, are only offered for the sake of encrypting your data. Any ISP looking to block your VPN traffic will shut down the connection to your VPN server, even if you’re also running an obfuscated VPN service. Instead, I’ll look at Amnezia’s obfuscated protocols and how well they hold up.

Without access to Russia or China’s internet routers, it’s difficult to truly tell how well a VPN protocol holds up under scrutiny. With that said, there are multiple techniques you can use to identify VPN traffic and it’s possible to make educated guesses about how governments track VPN usage.

The most obvious one is comparing against a list of known VPN servers. This could involve using the VPN service and enumerating endpoint IP addresses assigned to you, or accessing a third-party IP database of known VPN addresses. It’s not a comprehensive solution but it’s a good start for any authoritarian government. It works against commercial VPNs, but Amnezia skirts this problem by letting you host your own VPN—any hosting site could be a VPN, and it would simply be unfeasible to block every hosting site without making the internet completely unusable.

Want to learn more?

Curious about VPN protocols? Or want to figure out which one is your match made in heaven? Check out our guide to VPN protocols.

An ISP could also block the default port numbers for VPN protocols. OpenVPN and WireGuard both connect to a fairly unique default port, but this isn’t a particularly effective solution. By changing the port to something another ubiquitous web service uses (such as 443 for HTTPS), you can ensure your VPN traffic can’t be blocked at the port level without forcing an ISP to block the other services associated with that port, again, making the internet completely unusable.

Both of these techniques are somewhat rudimentary and don’t address the actual problem: DPI. OpenVPN and WireGuard traffic can be identified by looking at the structure of the packet headers, which have a distinct set of bytes. You can try this out for yourself by opening up WireShark and capturing some traffic with WireGuard open. You’ll see that the first byte in the WireGuard header is either “01”, “02”, “03”, or “04”, each corresponding to a type of WireGuard packet, followed by three bytes of “00”. A DPI program can match these bytes to instantly determine whether this is a WireGuard packet without reading the inner contents. From there, it’s as simple as null-routing the destination of the packet, and now your WireGuard connection no longer works. A similar concept applies to OpenVPN.

This means there’s a flashing arrow over every VPN packet you send that says “Hey, I’m a VPN packet!”. It’s not hard for your ISP to capture this information. Amnezia employs some interesting ways to avoid classification, but let’s finish discussing the ways an ISP can identify VPN traffic with the most nebulous, and least understood method: behavioral analysis.

The frequency, size, and destination of individual packets can be aggregated to create a statistical profile of a user’s internet traffic. Then, this reveals information about the stream of traffic, even if it's encrypted and obfuscated. Neural networks can be trained to accurately identify OpenVPN traffic with over 90% success rates. The entropy of an encrypted message can be analyzed to decipher which file type it might be, too. These are just the techniques we’re aware of, but many DPI vendors use black-box software to analyze traffic and this is especially true of ISPs in repressive regimes.

It’s not all doom and gloom, however. Security is always an arms race, even when it seems dismal for one side. Amnezia offers several different obfuscation methods with different levels of success against DPI. OpenVPN over ShadowSocks is the most well-known... and least effective. It creates an encrypted connection to a SOCKS5 proxy server, allowing you to run a VPN over the connection which doesn’t show any tell-tale signs of VPN use.

Unfortunately, the behavioral analysis I talked about earlier exposes ShadowSocks. It’s hard to find concrete details on how China blocks this system, but chatter amongst VPN circles suggests it’s fallen out of use and authorities are starting to use it to identify connections. This is backed up by the existence of SSAPPIDENTIFY, an academic project published by Xidian University, China, which seeks to classify types of ShadowSocks application traffic by using neural network classification. There are also suggestions that ShadowSocks is now vulnerable to active probing, whereby an ISP will send crafted traffic to a suspected ShadowSocks server and analyze the response to determine whether it’s really a ShadowSocks server.

Thankfully, ShadowSocks now supports plugins that enhance the usability of the project as an obfuscation tool. Cloak is the most important one offered by Amnezia, as it drastically reduces the protocol's vulnerability to active probing methods while continuing to masquerade as HTTPS traffic not easily identified by traditional DPI methods. Cloak does significantly downgrade the speed of your internet connection, but it’s worth it if you’re extremely concerned about the security of your internet traffic.

Finally, we get to Amnezia’s custom implementation of WireGuard: AmneziaWG. It’s important to note that AmneziaWG is not Amnezia’s recommended solution for extreme censorship, which is OpenVPN over Cloak. Instead, AmneziaWG is a hardened version of WireGuard that removes several key aspects used to identify WireGuard using traditional DPI methods. It changes the header values from the static ones I outlined earlier to random values, which makes it harder for DPI to identify the WireGuard packet. WireGuard packets also have a static size of 148 bytes, but AmneziaWG appends junk data to the start of a packet to randomize the packet size, making packet matching harder. Finally, the initial session connection is disguised by sending junk packets at the start of the connection. Honestly, it’s unclear if this would make a massive amount of difference to traditional DPI methods but potentially confuse statistically-based behavior analysis.

You should note that all of these obfuscation techniques add additional overhead when using WireGuard proportional to how much junk data you’re adding on a per-packet basis. All of these metrics are customizable from inside the Amnezia app, so you can balance obfuscation against speed until you find a sweet spot that confuses DPI while keeping your connection usable. While I don’t have a Russian or Chinese ISP to test against, it wasn’t possible to create a set of rules in WireShark that could accurately characterize AmneziaWG traffic without prior knowledge of user settings. Amnezia’s own testing in these regions suggests that any regime that outright drops unfamiliar UDP traffic will filter out AmneziaWG traffic, so where possible you should probably stick to the slower OpenVPN over Cloak protocol. However, for regimes with less advanced DPI, such as Iran, Egypt, and Turkey, it may be a viable solution. Your mileage may vary.

Amnezia VPN setup and configuration

Amnezia makes server administration surprisingly simple, too. You set up a VPS server on your account and provide details to the Amnezia app, which you’ll have set up on your phone or desktop. Once the app logs into your VPS provider for the first time, it sets up the relevant public key infrastructure and OpenVPN key-pair necessary to authenticate you securely in the future. The client then connects by SSH and automatically installs and configures the Docker software required to run your VPN connections.

Do it yourself

We used Amnezia VPN to set up a VPN server from scratch—and the result was pretty awesome.

Each time you start a new VPN protocol connection, your Amnezia client boots up a new Docker instance with randomly generated SSH keys. This approach has two major benefits: any data left behind by your VPN instance is removed from the server after your connection is terminated, and any new instances have completely fresh credentials. If you’re worried your key has somehow been compromised, you can tear down your Amnezia instance and start a new one in just a few moments.

After you’ve started up an Amnezia instance, all admin is taken care of inside the app. Installing new protocols on your server, sharing your access credentials with others, and adding new servers to your client only takes a few taps. It makes tweaking your VPN service shockingly easy and I’m impressed with how seamless this process is. It’s clear that Amnezia’s team put thought into creating a user-friendly product that’s still powerful enough to provide effective security while browsing.

Amnezia anti-censorship tools

Amnezia also recently announced the launch of its anti-censorship tool, available in Russia, Myanmar, Iraq, and Kyrgyzstan, at no extra cost.

These four countries have been hit particularly hard by censorship, making it increasingly difficult for citizens to access sites and services like Facebook, X, WhatsApp, and TikTok. It's easy to take these platforms for granted, but they're vital sources of information, allow folks to keep up with current events, and a means to stay in touch with friends and family.

Amnezia's tool allows access to sites that'd otherwise be inaccessible, thanks to censorship.

In March 2022, Russia blocked independent media outlets covering the Ukraine war, including the BBC and Deutsche Welle, as well as popular social media platforms. Amnezia worked alongside Russian human rights activists, Roskomsvoboda, to release the first version of the service.
In 2021, following a military coup, Meta services were blocked in Myanmar. Fortunately, the Amnezia service arrived in the country in April 2024.
Kyrgyzstan blocked TikTok back in April 2024, though citizens can now regain access to the app via Amenzia.
Amnezia introduced its tool into Iran in May 2024, too, using the AmneziaWG protocol—a necessity, given that all standard VPN protocols are blocked in the country.

Performance testing: How fast is Amnezia VPN?

Ultimately, your speed and streaming capability will vary massively depending on which host you use and how far away you are from it. For this reason, it’s hard to come up with meaningful numbers, because your experience is absolutely going to be different from mine.

What you should keep in mind is that Amnezia is not an ideal solution for unblocking content streams such as Amazon Prime or Netflix, as these providers are constantly on the lookout for non-residential access to their streams and block those IPs accordingly.

Amnezia VPN review - final verdict

It could be said that there’s nothing fundamentally innovative about Amnezia VPN—after all, what’s stopping you, a tech-savvy internet user with unfiltered website access from registering a VPS subscription and installing some open-source VPN software yourself?

If that’s your takeaway from Amnezia VPN, you’re missing the point. Not everyone has the knowledge or resources to set up a micro-VPN service securely, but everyone should have access to a free and unfiltered internet. It shouldn’t be an exercise in gatekeeping, where only the most well-read and capable internet users can duck past censors. Privacy tools need to be easy to use to keep the barrier to entry as low as possible. This philosophy is baked into Amnezia’s design all the way through. You can even share your VPN client information with other users through the app so it’s possible to run a single VPN server for several of your friends and family with relative ease.

Amnezia embraces this philosophy wholeheartedly with a simple interface and clear, concise support material that walks you through the installation process in plain English. I can’t speak for how the site reads in Russian, but I can only assume it’s similarly well-written. The source code for both client and server has been independently audited by 7ASecurity, which published several exploits of varying severity that the Amnezia team has patched. This approach to transparency is really refreshing from a VPN provider.

The only significant issue I can see with Amnezia is that you’re handing over your server credentials to a third party, which automatically administers a server for you. Normally, this is a setup I’d balk at. However, the Amnezia app and server are both fully open-source. You can browse the source code line by line for yourself if you need convincing that Amnezia isn’t malicious.

I can only think of one other solution that’s attempting to do something similar to Amnezia, and that’s Outline VPN from Jigsaw, a Google technology incubator dedicated to technology projects that intersect with online anonymity and freedom of speech. It uses ShadowSocks to tunnel a ChaCha20 encryption stream, but it’s not as pointedly designed to evade DPI as Amnezia is, nor is it nearly as user-friendly. Although Outline is also open source, Jigsaw’s proximity to US defense projects makes me somewhat uncomfortable so when it comes down to it, I’d bet on the rag-tag group of Russian privacy advocates in the long run.

OysterVPN review – expert opinions in 2024

6:47 pm | January 17, 2024

Author: admin | Category: Computers Gadgets Pro Security | Tags: VPN | Comments: Off

OysterVPN review - quick menu

1. Features
2. Pricing
3. Privacy and security
4. Logging policy
5. Netflix and streaming
6. Performance
7. OysterVPN apps
8. Customer support
9. Alternatives
10. Final verdict
11. How we test

The market for virtual private networks (VPNs) is huge, and it can be difficult to figure out which services are reliable and which are better off avoided. Some VPNs are mediocre, most do the job without having any stand-out features, and a handful really knock it out of the park.

With this in mind, I'll be digging into OysterVPN (and whether it's worth your money.) I've been researching and reviewing VPNs for years, now, so you can rest assured you'll be getting first-hand info from a hands-on testing process (and not just the usual marketing blurb you can find on OysterVPN's website yourself.)

For a VPN that's only been on the block for a few months, OysterVPN is massively impressive—and definitely one to keep an eye on. With some adjustments to its toolset, the inclusion of WireGuard, and better performance, OysterVPN could be well on its way to giving the best VPNs a run for their money. For now, however, there are still plenty of snags to iron out.

OysterVPN features

OysterVPN is situated in Ireland and owned by Oyster Digital Solutions Ltd. It's a new-ish provider that kicked off its VPN services in early 2023 and, hopefully, this means that it's on the cutting edge of cybersecurity technology.

Ireland isn't part of any Western intelligence pacts, like the notorious 14 Eyes Alliance, so I'm also pretty confident in the provider's privacy policy. However, Ireland does impose mandatory data retention laws—so OysterVPN's no-logs policy has to do a lot of heavy lifting.

OysterVPN currently hosts 150+ servers in 17 countries, most notably:

Australia
Canada
France
Germany
Hong Kong
India
Singapore
Netherlands
USA
UK

This is a decent spread of locations, especially across Europe and Asia, but it’s nowhere near the extensive list of locations you would get from a top-tier VPN. Functional, but not amazing.

It's great to see OysterVPN offering split tunneling, which gives you full control over which apps are covered by the VPN connection. The downside is that it's only available on the Windows and Android apps, which is disappointing, considering that top-tier providers now offering split tunneling for MacOS.

Keep in mind

Split tunneling is handy if you want to stream content from one location and browse in another, but it's better to switch it off if you put your privacy first.

Fortunately, OysterVPN's split tunneling works well. It's easy to specify which apps and sites use the VPN connection and whether you'd rather have the VPN cover your entire connection.

Torrenting with OysterVPN is seamless, too. I didn't encounter any issues while hopping from server to server, which suggests there’s a full P2P service enabled across all of them. The same goes for P2P gaming across Hamachi—it was a breeze.

OysterVPN pricing plans

OysterVPN has a single payment tier that allows you to choose how long you want to subscribe for. The monthly plan costs $9.99 and includes 3 free months upfront, which is pretty awesome.

The monthly plan is on the pricey side, given the lack of server locations, but OysterVPN's yearly plan is more modest at $2.50 per month. Alternatively, if you feel like making a bigger commitment, OysterVPN lets users make a one-off payment of $49.99 for lifetime access to the service. This works out at $0.42 a month—that's not bad at all, but it is a limited time offer.

No matter which subscription you pick, you'll be covered by a 30-day money-back guarantee, so you can put the provider to the test without risking a penny.

Unfortunately, there’s no free trial or free VPN tier, so you’ll have to purchase OysterVPN if you want to give it a shot. The provider only accepts major credit cards and PayPal, too, meaning there's no option to pay via Bitcoin. This is going to disappoint folks who want to really shore up their privacy.

All OysterVPN plans offer five simultaneous connections—which isn't massively generous. However, it will allow you to protect all of your favorite devices. A family household can easily have upwards of ten gadgets (including mobiles, PCs, consoles, and more), so if you're looking for unlimited connections, you're better off with Surfshark.

OysterVPN accepts most major credit cards and PayPal payments — (Image credit: OysterVPN)

Privacy and security

OysterVPN comes with most of the features you need to maintain your digital privacy. There are four VPN protocols to choose from: IKEv2/IPSec, L2TP/IPSec, PPTP, and OpenVPN. I recommend steering clear of L2TP and PPTP, seeing as they're not secure, and sticking with IKEv2 or OpenVPN. Both of these picks offer industry-standard security and reliable speeds.

I was disappointed to see that OysterVPN doesn't offer WireGuard, though. It's a relatively new VPN that combines the tight security of OpenVPN with the speed of IKEv2, all while maintaining a much smaller resource footprint. Given that OysterVPN touts itself as a modern VPN, there's no excuse not to offer WireGuard. Ideally, I'd like to see the service ditch its outdated protocols and welcome WireGuard to the fold.

OysterVPN passed all of the IPv4, DNS, and WebRTC leak tests I put it through. It’s reassuring to see that OysterVPN really will preserve your privacy while you’re browsing online, given that there are so many leaky VPNs out there. The only real issue I found was that IPv6 wasn’t supported, but as long as you disable this service, you'll be alright.

Furthermore, thanks to AES-265 encryption, you can be sure your traffic is encrypted in a way that won’t expose your data. It’s the same technology baked into SSL, which is trusted by every major institution on the internet.

Similarly, OysterVPN’s kill switch worked well. A kill switch makes sure that if your connection to the VPN drops, you won’t immediately default back to your ISP’s internet connection and accidentally leak your original IP. While it might be a little inconvenient, it’s an essential part of preserving your privacy with any VPN. I put OysterVPN's kill switch through a series of disconnection scenarios and it didn't disappoint.

I was pleasantly surprised to see that OysterVPN also offers DNS-level ad-blocking. Most of us use an ad-blocker these days, to banish those annoying pop-ups and invasive ads, but OysterVPN augments this functionality by putting a stop to malware and preventing it from being downloaded to your computer by blocking the connection on the network. In practice, this worked pretty well, but I still noticed a few ads here and there. This isn’t a dealbreaker by any means, as the feature is still extremely useful.

Logging policy

OysterVPN claims that it's a no-logs service—most VPNs do. It's difficult to verify this without a third-party audit, however.

In theory, OysterVPN could have a server architecture set up using disk-less servers that operate entirely in RAM. Actual details about its implementation, and how it achieves zero-logging, are scant at best, and Ireland has mandatory logging requirements.

So, if you can't take any chances with your privacy, I'd recommend sticking to audited services like ExpressVPN and NordVPN.

Netflix and global stream unblocking

Streaming with OysterVPN was painless. It takes a whole lot of dedicated manpower (and server capacity) to keep up with Netflix’s policy of banning VPNs, but I was able to check out US and UK content without a hitch.

Accessing Hulu, Disney+, BBC iPlayer, Amazon Prime Video, HBO Max, and DAZN was just as straightforward—and that's an impressive spread of services. I was even able to access the WWE network, and OysterVPN claims it’s also able to unblock a wide range of additional sports platforms including UEFA, the Premier League, and the NBA. I haven’t tested this for myself, but given how well OysterVPN unblocked everything I did try out, I have no reason to doubt this is the case.

I didn't experience any major issues with lag or buffering, which is awesome news if you're in need of a tip-top streaming VPN, but streaming in 4K during busy periods did push OysterVPN to its limit. I'll dig into the details when we delve into the provider's performance, but overall, streaming with OysterVPN was adequate.

OysterVPN unblocks an impressive array of streaming platforms — (Image credit: OysterVPN)

OysterVPN performance

OysterVPN has held its own so far but, unfortunately, it slips up where speed is concerned. Don't get me wrong, it's more than capable of handling day-to-day browsing—it's HD streaming that causes strain.

Using a 100 Mbps connection at 10 am, I connected to a UK server and captured 43.98 Mbps download speeds and 12.11 Mbps upload. That's respectable, but these numbers dropped dramatically when I ran my tests again at 6 pm.

The biggest dip in performance came when I switched to a US server. Download speeds clocked in at 11.59 Mbps and upload speeds at 3.79 Mbps. This wasn't enough to stream 4K content from Netflix US without significant buffering. I found similar speeds connecting to Hong Kong, at 8.91 Mbps down and 3.65 Mbps up.

So, while OysterVPN offers decent speeds if you’re connecting to a nearby server, long-distance connections tank its performance. That means that OysterVPN might not be your perfect pick if you're in the market for a reliable Netflix VPN that'll unblock geo-restricted content.

OysterVPN apps

Things improved when I switched my attention to OysterVPN's apps, however. There’s an install app for Windows, MacOS, iOS, and Android, and the Windows and MacOS versions also have their very own installation wizards that make set up a breeze. If you're a mobile user, just head on over to your app store to find OysterVPN.

The service can also be set up on a range of routers, and there's browser support for Chrome and Firefox via add-ons.

Sadly, you won't find any native Linux support. Relying on OpenVPN configuration files and a third-party client makes OysterVPN look a little outdated, but there are, at least, a handful of articles that'll guide you through the process.

OysterVPN running on a Windows laptop — (Image credit: OysterVPN)

OysterVPN customer support

OysterVPN's customer support is pretty solid. I got in touch to clarify some of their marketing information and got a response almost instantly, which is surprising. I couldn’t find a phone number for their support staff and couldn’t get their live chat to work, but if they respond to emails this quickly, it's not going to be a huge issue.

The FAQ follows suit. It's not particularly expansive, but the available guidance is straightforward, easy to follow, and covers a range of topics. Its installation guides are clear, too, but there's not a lot of information about what to do if something goes wrong.

Alternatives

With so many VPNs to choose from, you're not tethered to OysterVPN—especially if you don't want to compromise on speed and security. Below, I've outlined some of my top picks.

ExpressVPN

ExpressVPN is my #1 VPN overall, and boasts a stacked roster of features. Plus, you'll be able to take your pick of more than 3,000 servers in 94 countries. ExpressVPN unblocks just about every streaming service you can imagine and can keep up with other resource-intensive tasks, like gaming, torrenting, and video calls. Its reputation for ironclad security is well-deserved, too, thanks to robust encryption protocols, a strict no-logs policy, and advanced features like a kill switch and DNS leak protection.

NordVPN

NordVPN is another favorite of mine, and a powerhouse in the VPN sphere, that's committed to safeguarding your security. It packs military-grade encryption and a strict no-logs policy, as well as a handy Double VPN feature for folks who really want to fly under the radar. NordVPN is also the fastest VPN I've ever tested, ensuring smooth browsing, streaming, and downloading experiences that won't be interrupted by any buffering hiccups.

Surfshark

Surfshark is an awesome pick for folks on a budget—it's the best cheap VPN available. That doesn't mean it's lacking in features, however. With Surfshark, you'll get awesome speeds ideal for HD streaming, a CleanWeb tool that'll banish ads, malware, and trackers, and an audited no-logs policy. Surfshark is also one of a handful of providers to offer unlimited simultaneous connections, so you can secure a whole household of gadgets with one subscription.

Proton VPN

Wrapping up my recommendations is Proton VPN. Developed by the team behind Proton Mail, a renowned encrypted email service, ProtonVPN follows a similar philosophy of protecting user data. The service utilizes robust encryption protocols and offers a range of advanced security features, like Secure Core, which routes user traffic through multiple secure servers to prevent interception. ProtonVPN has a standout free VPN, too, although it's more limited than its paid alternative. Still, it's a great way to try the service before committing to a long-term plan.

OysterVPN review: Final verdict

OysterVPN isn't a bad VPN by any stretch of the imagination. It does what it needs to do, and fairly cheaply at that. Its biggest problem is that there's nothing that makes it stand out in a highly competitive market, and it’s somewhat lacking in server location and speeds.

These are totally fixable issues, however, and I have a feeling that OysterVPN is going to get better and better over time. In fact, for a VPN that's only been operating for a few months, it's already impressive.

Still, there are better-established VPNs with more servers, better speeds, and a wider feature set than OysterVPN. ExpressVPN and NordVPN are the cream of the crop (that tick all of the right boxes), and I'd recommend checking them out if you want a premium and polished service.

TechRadar rating: ⭐⭐⭐

Subscribe if:

✔️ You want to unblock a ton of content: OysterVPN had no trouble bypassing geo-blocks to access the likes of Netflix, BBC iPlayer, and Hulu.
✔️ You're a mobile user: whether you're an Android or iPhone loyalist, OysterVPN has easy-to-use apps for your device.
✔️ You want a broad spread of servers: OysterVPN might not have a ton of servers, but the ones it does have are scattered across key locations.

Don't subscribe if:

❌ Speed is your priority: unfortunately, OysterVPN can't compete with the industry's top names when it comes to performance, especially when connecting to distant servers.
❌ You're on Linux: with no native Linux support, you'll need to jump through some complex hoops to get OysterVPN up and running.
❌ You need live chat support: I couldn't find OysterVPN's live chat, which might be a problem if you need quick answers to pressing problems.

How we test VPNs

Meta confirms blocking Europeans from using Threads via VPN

11:45 am | July 15, 2023

Author: admin | Category: Mobile phones news | Tags: VPN | Comments: Off

Instagram launched Threads in October 2019 as a standalone app to chat with Instagram Close Friends, but that app is unavailable now since Meta launched a new Threads app last week as its Twitter competitor. It's available in over 100 countries, including the US and UK, but not in Europe. And you can't even use it in Europe via VPN since Meta has confirmed that it's blocking users in European countries from using Threads via VPN, resulting in profiles and content not loading and notifications not working. “Threads is currently unavailable in most European countries and we have taken...

Mullvad browser review

8:41 am | July 12, 2023

Author: admin | Category: Computers Gadgets | Tags: VPN | Comments: Off

The Mullvad browser is the newest addition to the web browsers industry, founded in April 2023. This browser is a joint collaboration of the Tor Browser and the Mullvad VPN.

Simply put, it's a Tor browser that works with the Mullvad VPN instead of the Tor Network. Naturally, a browser partnering with a VPN directly makes it much more secure and safe than most other browsers in the industry.

In this review, we’re going to help you decide if you get the Mullvad Browser or not by delving deep into its features, privacy protocols, usability, pros and cons, and much more.

Mullvad browser: Features

Mullvad comes with a private browsing mode that doesn’t save your history, cookies, or any information that you might have shared during the session.

If you don't want anyone to track your online activities, this feature will be your friend and wipe off every last detail.

It offers up to 3 security levels, and you can choose which settings work best for you:

Standard — the default and the most basic mode, where all website functions are allowed.

Safer — all website functions that are considered dangerous are banned.

Safest — the last and final security level where only the most basic website features are allowed to run while the rest are blocked.

As you can see, turning on the “Safest” mode can heavily restrict your online activities, which is why we don't recommend it.

Another benefit of using Mullvad is that it doesn't work with too many extensions or plugins. After all, the more third-party software you add, the higher will be the risk of data leaks.

That said, Mullvad does provide you with the plugins you’ll need the most. For example, you can use the uBlock Origin plugin to block ads and unnecessary pop-ups.

Mullvad’s anti-fingerprinting technology makes it almost impossible to track any individual user on Mullvad. It achieves this by making the fingerprints and digital identities of all its users across an operating system look alike.

Just like the Tor browser, the Mullvad browser, too, is based on Firefox. This means that when a new feature is added to Firefox, it's considered for addition to Mullvad as well.

However, the addition is only done after the feature is thoroughly examined and it's confirmed that it doesn’t pose a security risk to the system.

Mullvad’s best security feature is the identity reset button that lets you reset your profile and delete all your cookies, histories, and favorites so that no activity can be linked back to your account. It's important to note that this feature won't change your IP address — it’ll simply factory reset your profile.

Mullvad browser: Privacy

A browser created in collaboration with a VPN provider is undoubtedly privacy-friendly. In fact, that was the bottom line purpose of this collaboration project — to provide users with a safe browsing platform equipped to combat new-age digital threats.

One of our favorite security features of the Mullvad browser is “Reset Identity.” As the name suggests, this option will remove all your cookies, browsing history, bookmarks, and tabs. It'll come in extremely handy if you’re worried that someone might be prying on your online activities.

The Mullvad browser also comes with the uBlock Origin plugin that you can use to block ads and pop-ups. And for trackers that might steal your information, Mullvad has an in-built combat system to restrict such activities.

Mullvad browser: Ease of use

Since the Mullvad browser works on Tor’s interface, those familiar with the latter will have an easier time getting to know how Mullvad works.

It follows the standard format of placing the stack of tabs at the top of the screen, followed by the address bar. To the left of the address bar, you’ll find page navigation options such as reloading or going back to the previous page, and to the right of the address bar, you’ll find your security features, browser cleaner, profile, and menu.

Under the Security tab is where you decide if you want to use the standard website protocols that allow a certain set of functionalities to customize and adjust the level of protection.

From the menu on the extreme right of the page (under the 3 dashes), you’ll be able to change the browser theme or add more extensions. All in all, the Mullvad browser is quite easy to navigate, and it'll not take you more than a few minutes to acquaint yourself with it.

Mullvad browser: Competitors

Mullvad was launched quite recently, so it's hard to tell who its immediate competitors might be. But one thing’s for sure is that it's trying to cater to a very specific target audience — those very particular about the level of security and privacy a browser offers.

This eliminates the majority of the people who use browsers like Chrome, Edge, and Bing. However, browsers like Avast, Firefox, and Opera that also prioritize data security can be considered Mullvad’s immediate competitors.

In fact, just like Mullvad, Avast, too, is developed by a company that is an expert in antivirus and VPN. Opera, on the other hand, is known to offer a free integrated VPN to all users. In short, all three of them are serving almost the same purpose.

Speaking of their performance, it's hard to compare the three, owing to Mullvad’s short experience in the market. We still don't have enough data to draw out a detailed comparison.

However, we do know that in terms of features, Mullvad has a few extra things to offer. It's the only one out of the three to offer pre-configured multi-level security modes. It's also the only one to offer a profile reset button that can immediately wipe off your entire browsing history from the account.

Also, you won't have to deal with the overwhelming number of options on the main page that both Opera and Avast are guilty of.

Mullvad browser: Final verdict

Mullvad browser is perfect for those who want VPN-like security in their browser without actually paying for a VPN. Features like private browsing mode, one-click profile reset, and anti-fingerprinting technology put Mullvad far ahead of the competition in terms of security and protection.

Another benefit of using this browser is its usability. The interface is quite simple. You have all the options you’ll need to run it smoothly, yet the main page isn't crowded with too many options — it's all perfectly balanced.

The menu and its options are easy to find because, unlike some browsers, Mullvad doesn't believe in hiding them from plain sight. There’s no reason why you shouldn’t give Mullvad a try.

Looking for a VPN and need more options? Check out our best VPN buying guide.

GoodAccess business VPN review

9:25 pm | April 18, 2023

Author: admin | Category: Computers Gadgets | Tags: VPN | Comments: Off

GoodAccess VPN is an essential static IP provider, designed specifically for businesses. Based in the Czech Republic, it empowers small business owners to securely access essential resources from any location while allowing administrators to customize the settings via a web-based dashboard, as well as monitor for suspicious visitors and potential risks. GoodAccess aims to offer the benefits of a zero-trust model for remote access purposes wherever you and your workers find yourselves.

GoodAccess is the perfect solution for small and medium-sized businesses, boasting the speed of implementation as its standout feature. With the promise to create a robust virtual VPN moat around your business applications and assets and attractive pricing plans plus a free trial, why wouldn't you choose GoodAccess?

Let’s check if it delivers on its bold promises.

Plans and pricing

There is something for everyone with the plethora of pricing plans GoodAccess offers to its customers. The Starter plan is now free forever, covering the basics with their “basic secure shield” functionalities. This is a great starting point for a small group of freelancers who are looking to secure their startup network.

Moving on, we have the Essential plan that costs $9 per user per month, but requires a minimum of five users. In addition, for each dedicated gateway you will have to pay an additional $39 per month.

The Premium plan costs $14 per month per user and also has a minimum required amount of users set at five. It offers much more than the previous two plans and is ideal for cloud businesses.

Finally, the Enterprise plan is for larger organizations, with all details to be discussed with the sales department of the company.

If you opt for annual billing, you will be able to save 20%, which is a welcome sight for firms looking to lock in a long term partner.

All things considered, it’s a reasonable value for money if we compare GoodAccess with its more famous competitors.

Business VPN — GoodAccess provides a static IP address to protect your business systems (Image credit: Good Access)

Security features

GoodAccess is your one-stop shop for unbeatable business security features - at a fantastic price. Its SASE (Service Access Service Edge) solution gives your online team the peace of mind that comes with knowing they can access all your cloud-based systems securely. It features 2FA/MFA (two-factor and multi-factor authentication) for an added layer of protection for logins, as well as SSO compatibility with Google, Azure AD, Okta, SAML, Active Directory, or LDAP. On top of that, its encryption protocols (IKEv2 and OpenVPN) offer robust 256-bit security. Plus, it's IPv4-only and has no DNS leaks, while port-forwarding is enabled too.

GoodAccess keeps your team members in check with its employee monitoring and access logging. You'll be able to get a clear view of how well you comply with GDPR, SOC2, or HIP to ensure granularity of access to only necessary materials and areas of the network.

Whitelisting your dedicated IP ensures that all of your online business systems can be trusted, eliminating the risk of employees being barred from shared online resources. Furthermore, personal VPNs provide additional safety measures such as a kill switch, which suspends internet activity should the VPN connection drop; adding this feature to GoodAccess would significantly bolster its security.

All in all, GoodAccess delivers the goods when it comes to security features, bringing it closer to more premium packages at a lower price.

Management features

GoodAccess packs several management tools built around the idea of user-friendliness and accessibility. For starters, you can manage gateways by instantly deploying a private gateway with a static IP for your employees. You can choose these among more than 33 locations across the globe. Using multiple gateways should help you in situations when you need backup or faster connection speeds.

Managing access is done by creating special access cards that can authorize it for specific resources and systems for individual employees or groups. You can easily assign these by the departments, granting different access authorization to, for instance, your marketing team as opposed to your IT personnel.

GoodAccess has really thought of everything, with 16 different application integrations available for businesses using SaaS apps such as WordPress, Google Cloud, Magento and more. Not only do these integrations set up a secure, private and encrypted tunnel from your app to your endpoint, but there is also copious documentation on how to implement each one. On top of that, you can even setup a single-sign-on provider such as Okta, Google or Azure, making GoodAccess a great choice for those wanting the extra protection or those that have already made the decision to use SSO as their main authentication method.

Interface

GoodAccess is designed with convenience in mind. Users can quickly view the active gateway and its associated IP address at the top, followed by a large button to enable the VPN connection. The systems configured by the team admin are listed below. Meanwhile, the options menu in the top left corner offers the chance to alter settings, read the terms of service or contact customer support.

The admin dashboard is a bit more intricate, as it allows for a tailored experience throughout the whole organization. Here, a complete overview of all members, gateways, systems and further options is available, each menu item is dedicated to a specific feature and featuring its own unique look.

Its control panel is dominated by an accessible and clean interface and a responsive dashboard that will help you get the most out of it in a short time. Navigating its buttons and sections goes quite smoothly and, even more importantly, intuitively. This is no small feat if you consider that you do not want to have your staff run in fear when presented with all the options hosted by this system.

All team members can be easily invited to be made a member of individual groups, with a tag-based system helping you filter them out subsequently based on the changing circumstances in the field.

The same level of user-friendliness is provided for the interface used to manage integrations and downloads.

Support and customer experience

The GoodAccess website's contact section features the company's address, and if you need to get in touch with the staff, you can fill out the short form provided. Alternatively, you can schedule a free online session with the GoodAccess Guru and address any initial installation problems, such as whitelisting or plugin issues. Furthermore, customers (especially Enterprise customers) can access 24/7 help through live chat or IT ticketing system. On their website, GoodAccess also provides customer reviews under the References tab.

On the GoodAccess website, Samohyb states that its VPN solutions are used by over 10,000 individuals, and over 1,000 teams. Despite this, it’s difficult to source many customer reviews.

GoodAccess provides some customer feedback on its website, under References. There’s overall praise for GoodAccess’ user-friendly control panel, its low latency (ability to process lots of data quickly), strong encryption, and easy-to-use access control settings.

We sourced two customer reviews from Capterra and both were positive about the overall user-friendliness, affordability, and reliability of GoodAccess. Although a problem with initial whitelisting is mentioned, it’s stated that this issue was quickly resolved with the help of GoodAccess Guru.

The competition

Compared with the starting price per user per month of NordLayer, GoodAccess’ equivalent is cheaper. However, NordVPN's offering provides security features GoodAccess lacks, such as a VPN kill switch and two-factor authentication.

Like GoodAccess, Encrypt.me is a VPN service that’s good for small businesses. It’s easy to use and offers similar features, such as a free trial and accessibility across all devices. That said, Encrypt.me notably offers more server locations—over 70 across 40 countries.

Final verdict

Small businesses looking to invest in a VPN service for their employees should definitely consider GoodAccess as a great starting point. With a fixed monthly fee that covers multiple users, it represents a cost-effective option for any organization. On the other hand, larger companies may benefit more from NordVPN Teams, a competing solution with additional features. Nevertheless, GoodAccess provides a free trial, so your business can assess the service before signing up for a monthly or yearly plan.

Larger enterprises should do well to check out more expensive VPN packages with more robust sets of advanced features.

For businesses on a shoestring budget or those that prefer to save on security, it’s an affordable option that does not feel like one at any time.

We've also highlighted the best business VPN

Ping Identity (PingOne) review

9:00 pm | April 14, 2023

Author: admin | Category: Computers Gadgets | Tags: VPN | Comments: Off

PingOne is an ideal solution to secure access rights management across multiple devices. It offers a unified console, single sign-on, and connection security with a companion application. Moreover, it can integrate seamlessly with other Identity Access and Management (IAM) systems such as Active Directory, Azure AD, CA Technologies, Oracle, and IBM. Enjoy effortless authentication for all your mobile, tablet, laptop, and desktop devices with PingOne.

Want to try Ping Identity? Visit the website.

Perimeter 81 is a Forrester New Wave™ ZTNA Leader

Ditch your legacy VPN hardware and automate your network security with ZTNA. Secure remote access from anywhere with just a few clicks. Onboard your entire organization in minutes, not days. Learn why Perimeter 81 is one of TechRadar's choices for the best ZTNA security providers. Download the report.

Plans and pricing

Similar to Okta, Ping Identity has made it very complicated to choose the right pricing plan for your business if you are a small business owner. We start off with the firm’s Workforce plans, where we have three plans, the Essential, which costs $3 per user per month, Plus at $6 per user per month, and the Premium plan, for which you will have to go through the sales department to get a custom offer. The main differences between the plans relate to the functionalities the users have at their disposal, with SSO coming in as standard even with the lowest plan offering.

Next, Ping Identity offers their Customer pricing plans, which also have three levels. The Essential plan costs $20,000 annually, the Plus $40,000 annually and for the Premium you will have to contact sales.

Both Workforce and Customer plans have the option of 30-day trial, which could help you choose the right plan for you and your company.

Features

PingOne offers powerful Multi-Factor Authentication capabilities, which include passwordless authentication, eliminating the risk of attack and removing the frustration of memorizing multiple passwords. Adaptive to the situation, it can utilize frictionless, behavioral, and contextual factors such as IP address, geolocation, and timestamps to determine any potential risks. Plus, their Single Sign-On feature allows users to access multiple applications with one single set of credentials, saving admins time by lessening password reset requests and discouraging the use of weak or recycled passwords.

Risk management also plays a key role, as it integrates with authentication flows and policies to track and notify any events during user sessions. It rates, and groups risk signals, displaying any risk associated with the user's device and delivering a risk score. Thus, administrators are better equipped to make the best decision for granting access with the help of Ping's intelligent authentication providing risk signals and evaluates user behavior according to context.

Interface and in use

For the user, PingOne couldn't be simpler. With one click of the URL provided, usually in the form of an icon on their desktop, they'll be in the PingOne cloud. For the first-time user, the connection procedure is quick and easy, and afterward, their desktop is populated with the apps to which their organization has given them access to. System administrators can also set up groups and link with Active Directory and a range of other settings to cater to their organization's needs.

Accessing cloud-based applications is a simple process: the user clicks on the icon of the desired application on their desktop and is taken directly to PingOne, where they are securely authenticated. For extra security, strong authentication can be used. After this, a token exchange happens to confirm the user's identity, and they'll be connected to the application. It's all seamless and invisible to the user.

Support

The support the company offers is comprehensive, starting off with business phone numbers that will link you directly to customer support. If you are not a “phone person,” you can create a case for the firm’s support team to follow up on. A step up from some of the competitors is an offer for various certificates when it comes to using PingOne that users can pursue.

A detailed documentation section is available, but the documents tend to be heavy on technical jargon, which makes them harder to use for non-tech people. But fear not; there is a community forum with a few moderators where you can get answers to your questions. And finally, there is a Q&A section on the site, rounding out the comprehensive support users get.

Security

At Ping, Information Security Management System (ISMS) is based on top industry standards, including ISO 27001 and NIST 800-53. The commitment to security is evidenced through the ISO 27001 certification, which the company has held since 2018. Every year since 2013, Ping Identity has been getting Identity as a Service (IDaaS) evaluation via SSAE 16 SOC2 Type II certification. There are also third-party assessors who audit products and control the environment to make sure security measures are working as intended.

The competition

Okta is a formidable rival, offering an abundance of features often hidden within its various pricing plans. Requiring more technical expertise, Okta provides an analogous service and in some areas, even superior choices when compared to PingOne.

In contrast to both PingOne and Okta, Twingate offers much less yet stands out with its granular security configuration and lower prices.

Final verdict

PingOne Cloud Platform is an advanced, cloud-based product with exceptional security and management protocols delivered on a single, highly-scalable platform. Seamlessly integrated with other software, it fits into existing workflows with ease.

No passwords are necessary thanks to its frictionless sign-on capabilities, meaning added risk-mitigation. For enterprises with broad customer usage, like retail, and businesses needing the highest level of identity security for compliance or confidentiality - like government, financial services, and healthcare - PingOne Cloud Platform is the ideal solution.

Check out our best business VPN

Perimeter 81 ZTNA review

4:30 pm | April 13, 2023

Author: admin | Category: Computers Gadgets | Tags: VPN | Comments: Off

The Perimeter 81 security platform is a complete package of powerful tools designed to protect applications, local networks, and cloud configurations. Embedded in the suite is the business-class Perimeter 81 VPN – far beyond what you'd find with a consumer VPN provider. On top of the basics, the VPN provides a suite of features for managing user groups and securely connecting remote personnel to the company's intranet from any location.

Want to try Perimeter 81? Visit the website.

Plans and pricing

All of the pricing plans, the three main ones, have a surcharge of $50 per month per gateway, which makes Perimeter 81 one of the pricier solutions in the market. The starting plan is called Essential and costs $10 per month per user and covers features such as split tunneling, private DNS, Wireguard protocol, etc.

Next is the Premium plan that costs $15 per month per user and on top of the Essential features ads, 10 cloud firewall policies, SSO, and 2FA capabilities. The last option is the Premium Plus plan which costs $20 per month per user and adds more advanced security features and wider coverage.

For all of the plans, if you go for annual billing, you can save an additional 20% on your purchase. Moreover, if you need more features, you can opt for the Enterprise plan, but you will have to go through the sales team to discuss details and prices.

Perimeter 81 is Techradar's best business VPN
Save 250+ yearly hours on manual configuration. Deploy your entire organization within a single day. Learn why Perimeter 81 is TechRadar's choice for the best Business VPN. Ditch legacy hardware and make the move to the cloud. See how simple it is for yourself.

Features

Perimeter 81 brings all the benefits of a traditional corporate VPN - safe remote access to corporate intranet resources and protection on unsecured public WiFi networks - without the cost and effort of expensive physical servers and specialized personnel. In addition, it provides flexible access to a variety of non-traditional network resources like cloud networks and IoT devices and can be quickly scaled with on-the-fly creation of private VPN server gateways with static IP addresses.

Administrators can monitor network activity, assign granular access permissions, and manage multiple user groups with team permissions via a unified management portal. With easy-to-use apps for major platforms like Windows, macOS, Linux, iOS, and Android, Perimeter 81 also provides access to a large public VPN network, automatic WiFi protection, two-factor authentication, and integration with identity providers such as Google Suite, Okta, OneLogin, and Microsoft Azure Active Directory.

Further features include HIPAA compliance for healthcare, data protection for finance, and a multi-tenant cloud with IP configuration capabilities. All in all, it offers a plethora of features, but what you get will depend on the plan you go for.

Interface and in use

Perimeter 81 makes it easy to equip your team with the cloud-based service they need. Simply invite team members to join, and they’ll receive an email containing the instructions to download the Perimeter 81 client software, which works on a wide range of platforms.

Then, use the Cloud Management Portal to manage your team members, servers, and permissions. With the Team tab, you can view each team member’s activity and assign them different roles with different levels of access. To access the desktop app, just follow the easy sign-in wizard, which helps set things up with a few clicks.

Overall, the UI is clean and intuitive, making Perimeter 81, one of the easier options to use when you’re in need of protection for your network.

Support

Perimeter 81 offers a plethora of assistance, particularly when setting up your management area. You can even request a complete demo of the system for a first-hand glimpse before making a commitment to purchase. A variety of help pages and instructional videos are available to help you master each feature and its setup. Plus, the website boasts an instant chatbot for answering any general queries about what the service provides and how to get started. In addition, you can submit a ticket for more specific inquiries and expect an emailed response.

If your query leads to an appointment, the rep will contact you rather than provide a direct and instant answer. This system is designed to ensure a smooth transition to sales, demonstrating the commitment to a business-first attitude across all areas. The level of help differs based on the plan you choose; Premium and Premium Plus subscribers are guaranteed prioritized aid, while Enterprise plan members receive 24/7 assistance. Those with Basic plans and prospective customers can expect a response during unspecified work hours.

Security

Although Perimeter 81 has distanced itself from the SaferVPN brand, its VPN is located in Israel, where data protection laws are incredibly stringent and strictly limit the government’s ability to intrude on personal data.

Logging-wise, Perimeter 81 keeps track of administrative and team member activities, such as inviting new members, changing team permissions, creating access gateways and more. Connection logs like timestamps, device locations and hostnames are also recorded. Furthermore, original IP addresses are logged on private access gateways but not on public servers.

The competition

Okta is a strong competitor as it too offers a plethora of features, mostly hidden behind its numerous pricing plans. Though Okta requires more technical know-how, it offers a comparable service and, in some segments, even better options compared to Perimeter 81.

Twingate is another competitor, but with much less to offer compared to both Perimeter 81 and Okta. Better granularity when it comes to configuring all of the security details sets Twingate apart from its competition, along with its lower pricing.

Final verdict

Perimeter 81 is the perfect pick for businesses with multiple employees accessing a shared network. With its unbeatable security, user access control, and lightning-fast VPN servers, you'll be more than satisfied. Although it's pricier than some, its comprehensive packages make it worth the cost - ideal for burgeoning enterprises looking for a dependable network solution.

You might also want to check out our list of the best business VPN providers available right now

All Google One plans now include free VPN

4:19 am | March 9, 2023

Author: admin | Category: Mobile phones news | Tags: VPN | Comments: Off

Google's VPN service has only been available to those who have one of the higher Google One tiers up until this point, but that's changing. All Google One plans include the VPN going forward, although the rollout is ongoing and may take a few weeks to conclude. The service works for Google One members in Austria, Australia, Belgium, Canada, Denmark, Finland, France, Germany, Iceland, Italy, Japan, Mexico, the Netherlands, Norway, South Korea, Spain, Sweden, Switzerland, Taiwan, the UK, and the US. Why only these countries? We can't tell you, unfortunately. Anyway, the good news is...

HowdyVPN: the basics

Howdy VPN: features

Howdy VPN: Find SNI

Howdy VPN: verdict

About AngelVPN

AngelVPN pricing plans

Privacy and security

Netflix and global stream unblocking

AngelVPN performance

AngelVPN apps

AngelVPN customer support

AngelVPN alternatives

AngelVPN review: Final verdict

How we test VPNs

Tested by

About the company

Amnezia VPN pricing

Does Amnezia VPN offer privacy?

Amnezia VPN protocols

Amnezia VPN setup and configuration

Amnezia anti-censorship tools

Performance testing: How fast is Amnezia VPN?

Amnezia VPN review - final verdict

OysterVPN features

OysterVPN pricing plans

Privacy and security

Logging policy

Netflix and global stream unblocking

OysterVPN performance

OysterVPN apps

OysterVPN customer support

Alternatives

OysterVPN review: Final verdict

How we test VPNs

Mullvad browser: Features

Mullvad browser: Privacy

Mullvad browser: Ease of use

Mullvad browser: Competitors

Mullvad browser: Final verdict

Plans and pricing

Security features

Management features

Interface

Support and customer experience

The competition

Final verdict

Plans and pricing

Features

Interface and in use

Support

Security

The competition

Final verdict

Plans and pricing

Features

Interface and in use

Support

Security

The competition

Final verdict

Recent Posts

Archives

Categories

Tags