Sidebar Sidebar
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

"No logs" UFO VPN caught logging everything...

T

TiggrToo

macrumors 601
Original poster
Aug 24, 2017
4,205
8,838
betanews.com

VPN with 'strict no-logs policy' exposed millions of user log files including account passwords

An unprotected database belonging to the VPN service UFO VPN was exposed online for more than two weeks. Contained within the database were more than 20 million logs including user passwords stored in plain text.
betanews.com betanews.com

HK based UFO VPN apparently were logging everything, including passwords in clear text - for both free AND paid users.

According to BetaNews, the 894GB haul discovered by researchers included the following:

  • Account passwords in plain text
  • VPN session secrets and tokens
  • IP addresses of both user devices and the VPN servers they connected to
  • Connection timestamps
  • Geo-tags
  • Device and OS characteristics
  • URLs that appear to be domains from which advertisements are injected into free users’ web browsers
If you had an account on there then it's probably time to bail fast - and change any reused credentials

1595085094286.png


Who knew that transparent here meant "in clear text"! 😱
 
Last edited:
  • Like
Reactions: BigMcGuire and 0128672
B

BigMcGuire

Cancelled
Jan 10, 2012
9,832
14,032
Sad. These things remind me of certain insects. When you see one, you know there are many many others that you can’t see.

People wonder why I don’t sprint for these 1TB for a lifetime for $20 offers and $20 for lifetime VPN! ....
 
  • Like
Reactions: TiggrToo
T

Tech198

Cancelled
Mar 21, 2011
15,915
2,151
lol ...I always knew UFO stood for something.

"Unidentified Flacky Object"
 
throAU

throAU

macrumors G3
Feb 13, 2012
9,137
7,294
Perth, Western Australia
colour me absolutely shocked and stunned
/s

I don't use a public VPN provider because I don't trust any of them and I don't care enough about circumventing region locks to bother.
 
ruka.snow

ruka.snow

macrumors 68000
Jun 6, 2017
1,886
5,182
Scotland
Well all of these VPN calm to protect your privacy and protect you from advertisers. Though in truth you are most likely the product and the only real thing you are getting is pirate access to another countries Netflix. A VPN does not protect you in the slightest from advertisers, long have users been fingerprinted without IP addresses(Hint we can still see what extensions you have, how you move your mouse, etc).
 
S.B.G

S.B.G

Moderator
Staff member
Sep 8, 2010
26,635
10,391
Detroit
Anyone who uses a paid/free VPN provided by anyone other than building it yourself should have no expectation of privacy.
 
Vonnegut5

Vonnegut5

macrumors member
Jul 29, 2020
74
80
I feel like a lot of these VPN companies log but have found ways to use the English language in their favor
 
You must log in or register to reply here.
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.
Top Bottom