this post was submitted on 07 Mar 2026
85 points (89.7% liked)

Technology

82414 readers
4336 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
85
Reddit users hate NordVPN. Are their criticisms legit? (www.pcworld.com)
submitted 2 days ago by fne8w2ah@lemmy.world to c/technology@lemmy.world
51 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] LastYearsIrritant@sopuli.xyz 67 points 2 days ago (3 children)

Send like most of the valid criticism is based around the fact that the company also is in the business of user data mining. Which is enough for me to never use them.

Though they also very aggressively advertise, which is also a big red flag.

Sharing co-owners with Tesonet and receiving funding from the same company that owns a data-mining service isn’t ideal. But there is no evidence, and never has been, that anything is being shared between NordVPN and Oxylabs. Besides, NordVPN states that it follows a strict no-logs policy, which means it doesn’t record, store, or share user activity. And this is backed up by the usage of RAM-only servers and multiple independent audits—most recently the service passed a third-party no-logs audit in late 2025 by security firm Deloitte.

[–] 01189998819991197253@infosec.pub 13 points 1 day ago

Deloitte? Lol. My past employer was audited by them, and passed. There is absolutely no way we should have passed. I was flummoxed when I read the report. Since then, any time I see a security or privacy audit by Deloitte, I just assume the company being audited would actually fail a bare-minimum audit.

[–] drmoose@lemmy.world 4 points 1 day ago* (last edited 1 day ago)

Tesonet is pretty well known as the biggest tech company in the baltics region so obviously they do a lot of different tech.

VPN itself is mostly harmless and can't intercept e2e encrypted traffic and today even DSN is under e2e.

The only red flag is really the inaccurate advertising that vpn protects from public wifi issues which is on page with every VPN ad (except Mullvad) but still wrong.

[–] Deestan@lemmy.world 18 points 2 days ago (1 children)

I mean... Deloitte is mercenary, and hired by the company wanting a passed audit.

They get paid to check pre-agreed spots A, B, and C and keep their eyes closed outside those areas.

A RAM-only server can still send metrics, metadata, "anonymized" metadata...

[–] shadshack@feddit.online 9 points 1 day ago (1 children)

Anything Deloitte touches is crap and their employees are as incompetent as they come. Source: my work contracts with Deloitte regularly.

[–] the_crotch@sh.itjust.works 2 points 1 day ago

We had a project that, by law, could only be touched by people within the US. We constantly caught Deloitte trying to sneak their (undoubtedly cheaper) off shore staff in there.