New research has revealed a shocking data breach: over 2 million VPN passwords have been stolen in the past year. VPNs are supposed to safeguard your privacy online, but this recent attack shows that even your VPN account may not be completely safe.
Some of the biggest names in the VPN industry, including Proton VPN, ExpressVPN, and NordVPN, have been targeted.
A report from Specops Software, an expert in password management and security solutions, has brought to light how these breaches occurred.
If you are using a VPN, this is a wake-up call to tighten your security practices. Let’s dive into the details of the breach and what you can do to protect your VPN account from cyberattacks.
The Scale of the VPN Password Theft
Between August 2023 and August 2024, hackers stole the passwords of over 2 million VPN users. According to the research, a whopping 1.3 million Proton VPN passwords were compromised, followed by 94,772 ExpressVPN and 89,289 NordVPN users’ credentials.
It’s important to note that the VPN services themselves weren’t directly hacked. Instead, users were likely tricked into revealing their login details through phishing attacks, fake websites, or malware like keyloggers.
These methods allow hackers to steal sensitive information without breaking into the VPN providers’ systems.
The Dangers of Compromised VPN Passwords
A VPN (Virtual Private Network) works by encrypting your internet connection, making it harder for third parties to track your online activity. VPNs are often used to enhance privacy and security, especially when accessing public Wi-Fi or sensitive websites.
However, if cybercriminals manage to steal your VPN password, all the privacy benefits are lost.
Hackers can use your compromised account to spy on your activity, steal more personal information, or even break into your organization’s network if you are using a business VPN.
“Once a VPN password is compromised, it can open up your system to attackers,” said Darren James, Senior Product Manager at Specops Software.
How the Attack Happened
The most common passwords stolen in this breach were weak ones like “123456”, although many users had strong passwords.
The research suggests that cybercriminals used phishing attacks and credential stuffing to access the VPN accounts.
Credential stuffing is when hackers use previously leaked passwords from other services and try them on different platforms, such as your VPN account. If you use the same password for multiple services, you are at a higher risk of this kind of attack.
NordVPN, ExpressVPN, and Proton VPN have all advised their users to improve their password security and enable additional protective measures.
How to Protect Your VPN Account
Although this data breach is alarming, there are steps you can take to secure your VPN account:
- Use Strong, Unique Passwords: Always create a password that’s difficult to guess, combining letters, numbers, and special characters. Avoid reusing the same password across multiple platforms.
- Enable Two-Factor Authentication (2FA): Two-factor authentication adds an extra layer of protection. It requires you to enter not only your password but also a unique code sent to your phone or email.
- Stay Alert for Phishing Attacks: Be cautious of any suspicious emails or links. Phishing attacks are designed to trick you into giving up your login credentials. Never click on links or download attachments from unknown sources.
- Use Antivirus Software: Keep your devices protected from malware by using trusted antivirus software. Some VPNs, like NordVPN, even offer built-in threat protection tools to help prevent cyberattacks.
- Monitor for Suspicious Activity: Regularly check your account for unusual activity. If you notice anything strange, change your password immediately and alert the VPN provider.
- Keep Informed About Data Breaches: Stay updated on the latest cybersecurity news and consider using a data breach monitoring service to be informed if your account is ever compromised.
Bottom Line
The theft of over 2 million VPN passwords serves as a reminder that using security software is not enough—you must also practice good cyber hygiene.
By following these steps, you can significantly reduce the risk of having your VPN account compromised.
Stay safe online, and make sure to use strong passwords, enable two-factor authentication, and remain alert to potential phishing attacks.