We review vendors based on rigorous testing and research but also take into account your feedback and our affiliate commission with providers. Some providers are owned by our parent company.
Learn more
vpnMentor was established in 2014 as an independent site reviewing VPN services and covering privacy-related stories. Today, our team of hundreds of cybersecurity researchers, writers, and editors continues to help readers fight for their online freedom in partnership with Kape Technologies PLC, which also owns the following products: ExpressVPN, CyberGhost, and Private Internet Access which may be ranked and reviewed on this website. The reviews published on vpnMentor are believed to be accurate as of the date of each article, and written according to our strict reviewing standards that prioritize the independent, professional and honest examination of the reviewer, taking into account the technical capabilities and qualities of the product together with its commercial value for users. The rankings and reviews we publish may also take into consideration the common ownership mentioned above, and affiliate commissions we earn for purchases through links on our website. We do not review all VPN providers and information is believed to be accurate as of the date of each article.

Latest News

In a striking revelation by Amnesty International (in partnership with The Washington Post), the use of Pegasus spyware, developed by Israeli firm NSO Group, has been found targeting high-profile journalists in India. This alarming development was highlighted in a forensic investigation conducted

Husain Parvez Published on 4th January 2024

In a troubling development in cybersecurity, multiple information-stealing malware families have been found exploiting an undocumented Google OAuth endpoint, identified as "MultiLogin," to regenerate expired authentication cookies. This discovery, initially made by a developer named PRISMA in

Zane Kennedy Published on 3rd January 2024

LoanCare, a significant player in the mortgage servicing sector, has announced that the personal information of 1,316,938 borrowers has been compromised. This breach stems from a cyberattack on its parent company, Fidelity National Financial, Inc. (FNF), a leading title insurance provider in the

Zane Kennedy Published on 30th December 2023

McAfee's Mobile Research Team has uncovered a sophisticated Android backdoor, dubbed “Xamalicious”, that has compromised an estimated 338,300 devices worldwide. The malicious software, developed using Xamarin — an open-source framework for building Android and iOS apps with .NET and C# –- has been

Zane Kennedy Published on 29th December 2023

Europol and ENISA (European Union Agency for Cybersecurity), national law enforcement from 17 countries, and private sector allies have uncovered a massive digital skimming campaign affecting 443 online merchants. Digital skimming, a form of cyberattack, involves stealing credit card information

Zane Kennedy Published on 27th December 2023

Mint Mobile, a mobile virtual network operator owned by actor Ryan Reynolds and due to be bought by T-Mobile for $1.3 billion, has reported a significant data breach. The breach occurred in March 2023 and puts customers at risk of SIM swap attacks. Known for offering prepaid mobile phone

Keira Waddell Published on 27th December 2023

Android users have something to worry about this holiday season, as a new variant of the Chameleon banking trojan has been identified. Concerningly, it’s capable of bypassing any biometric security measures to steal PINs and passwords. According to ThreatFabric, which first reported the malware, it

Husain Parvez Published on 26th December 2023

Comcast, the parent company of Xfinity, has confirmed a massive data breach impacting nearly 36 million customers following the exploitation of a critical vulnerability in Citrix software. The vulnerability, termed "CitrixBleed" and identified as CVE-2023-4966, was first announced by Citrix on

Zane Kennedy Published on 24th December 2023

A novel attack technique known as SMTP Smuggling has been discovered, allowing hackers to bypass traditional email authentication protocols and send spoofed emails from trusted domains. This technique, uncovered by Timo Longin, a senior security consultant at SEC Consult, exploits vulnerabilities

Husain Parvez Published on 21st December 2023

MongoDB, the US-based company behind the popular open-source NoSQL database management system, has reported a cyberattack that has exposed customer account metadata and contact information. The breach was detected on December 13, 2023, prompting MongoDB to initiate an immediate investigation into

Keira Waddell Published on 20th December 2023