Independent auditors have confirmed that one of the best VPN apps on the market protects your data with ‘a high level of security’.
Mullvad VPN has reviewed its security infrastructure for the fourth time between October 23 and November 28, 2024. X41 D-Sec experts conducted 30 days of penetration testing and source code audits for all VPN apps and found only non-critical issues.
The VPN provider stated that it has now addressed these flaws ‘as far as possible’.
Mullvad’s 4th Security Audit
“Overall, the Mullvad VPN applications appear to have a high level of security and are well positioned to protect against the threat model presented in this report,” completes the audit.
As mentioned earlier, experts conducted a white box penetration test and source code audit to investigate whether attackers could compromise users’ real identities or track their activities.
“The use of secure coding and design patterns combined with regular audits and penetration testing led to a very hardened environment,” experts said.
Auditors found a total of six vulnerabilities, but none were critical. Three minor issues “with no direct impact on safety” were also identified. All technical details can be found in the full report.
Commenting on the results, the provider said: “Mullvad is very pleased with the quality of the audit conducted by X41 D-Sec. There are advantages to having audits conducted by different companies.”
This is in fact the fourth independent safety audit that Mullvad has undergone every two years since 2018.
The fourth third-party security audit of the Mullvad VPN app concluded that the app has a high level of security. Some non-critical issues were found and have been resolved to the extent possible. Read more here: https://t.co/9XbSwJhwjDDecember 11, 2024
Mullvad has implemented solutions to four of the issues found during the audit. The team immediately released a new app version on the affected platforms (desktop, Android and Linux VPN) after receiving the audit report.
Auditors also confirm that the provider addressed all issues “expeditiously and that the solutions have been verified to work properly.”
The latest results confirm that Mullvad is one of the most secure VPN providers on the market today. In addition to a bulletproof security infrastructure, the service offers a strict no-log policy (which an inconclusive real-life police raid has proven), a built-in tracker blocker, and strong encryption protocols.
In October, Mullvad even strengthened its defenses against AI surveillance and censorship thanks to some advanced security features. These include expanded support for VPN obfuscation technology for the WireGuard protocol and the innovative DAITA system that aims to reduce AI-powered tracking by changing the appearance of data packets sent over the VPN network.