ExpressVPN It says the privacy policy and underlying server technology have been validated in two new independent audits from KPMG and Cure53.
KPMG independent auditors tested ExpressVPN’s Controls Framework and interviewed members of its team in order to verify the processes, systems, and controls to ensure this. vpn The servers were in compliance with their own privacy policy.
The audit, which was conducted in accordance with the International Standard on Confirmations (ISAE) (UK) 3000 Type 1, involved testing ExpressVPN’s policy of not collecting activity logs or connection logs, and TrustedServer technology operates as described.
What else did the auditors find?
Separately, cybersecurity firm Cure53 conducted a source code audit and TrustedServer white box security assessment.
ExpressVPN claims the results have been positive and highlights TrustedServer’s strong security stance, however, some auditors found: “Mostly minor general vulnerabilities and flaws were spotted.”
“Moreover, most of them can be assessed as trivial to fix and solve.”
Cure53 auditors explained: “It can also be positively acknowledged that none of the four identified vulnerabilities was actually rated as High or Critical, indicative of a truly robust environment exposed by ExpressVPN TrustedServer components.”
If you are interested in checking the results of the audit in full, you can review the report by KPMG over here And read the full audit report by Cure53 over here.
Says Aaron Engel, Head of Cyber Security, ExpressVPN.
This news comes as VPN technology continues to play a major role in conflict areas around the world.
It is said that VPN use rose in Cuba after that The authorities are blocking access to the Internet As part of efforts to suppress political protesters.
If you’re interested in testing ExpressVPN’s claims for yourself, the company $100,000 bug bounty for discovering TrustedServer vulnerabilities Still under seizure.