-
The facts about the OSTIF OpenVPN source code audit
This post was originally published on May 15, 2017. With funding from the Open Source Technology Improvement Fund (OSTIF), a group of security experts from QuarksLab spent the first few months of 2017...
-
Your YouTube history exposed: Researcher identifies inherent security flaw in video streaming
This post was originally published on March 22, 2017. While researching how Internet Service Providers (ISPs) could optimize their services to improve users’ video-watching experiences, cyber-securi...
-
Who can see your data when you visit a non-encrypted HTTP site?
This post was originally published on February 14, 2017. Websites that use HTTPS (indicated by the green lock in the browser bar) encrypt all data between your browser and the website’s server. Nobo...
-
How ExpressVPN apps confirm they’re talking to ExpressVPN servers
This post was originally published on December 7, 2016. When you connect to a VPN, have you ever wondered if you’re connecting to a genuine VPN server? What if a third party---like a government, ISP...
-
How IP checkers work and why they're sometimes wrong
Your IP address makes it possible for websites to "see" your location. But the truth is, GeoIP (IP location) isn’t that smart. We've all seen movies where a tech genius types in a few arcane command...
-
Sweet 32 exploits the birthday problem but ExpressVPN won't be at the party
This article is written by Shaun Smith, an engineering fellow at ExpressVPN. It was originally published on October 26, 2016. A recent vulnerability, dubbed Sweet 32 after the common phrase for a 16th...
-
Certificate authority trust breach exposes vulnerability in Internet's trust hierarchies
In late March 2015, there was a major security breach involving unauthorized digital certificates impersonating Google. This incident has far-reaching implications for how ordinary people decide who ...
-
BadUSB virus gets badder: New malware threat fix released
This post was originally published on October 13, 2014. When you were younger your mother probably let you play outside all the time but with the understanding that you wouldn't talk to strangers. T...
-
ExpressVPN and Heartbleed
This post was originally published on April 13, 2014. We'd like to give some more insight into how we dealt with the Heartbleed security bug that affected most of the Internet last week. The key point...
-
TCP VPN servers—useful if you're having trouble connecting with the default configuration
This post was originally published on November 7, 2010. Here's a technical post to explain how our support team solves connection problems that a small set of customers in the Middle East have experie...
