Categories: Tech

ExpressVPN privacy and server technology gets the OK from two new independent audits

ExpressVPN says its privacy policy and core server technology have been validated in two new independent audits from KPMG and Cure53.

KPMG’s independent auditors tested ExpressVPN’s control framework and interviewed its team members to review processes, systems and controls to ensure VPN servers were in compliance with the privacy policy.

The audit, conducted under the International Standard on Assurance Engagements (ISAE) (UK) 3000 Type 1, included testing ExpressVPN’s policy of not collecting activity logs or connection logs, and that the TrustedServer technology works as described.

What else did the accountants think?

Separately, cybersecurity firm Cure53 conducted a source code audit and white-box security assessment of TrustedServer.

ExpressVPN claims the findings were positive, highlighting TrustedServer’s strong security stance, but auditors found some: “mostly general weaknesses and minor flaws were noted.”

“Furthermore, most of them can be rated as trivial to repair and fix”.

Related Post

The Cure53 auditors explained, “It can also be positively acknowledged that none of the four actually identified vulnerabilities were ranked with a high or critical severity score, indicating an already quite robust environment exposed by the ExpressVPN TrustedServer components. “

If you are interested in fully verifying the results of the audit, you can view KPMG’s report here

and read the full Cure53 audit report here (opens in new tab).

“Regular third-party audits that validate our controls and the results of our internal team’s work, along with other security efforts like our bug bounty program, give us even more confidence that we’re protecting our users properly,” said Aaron Engel, head of Cybersecurity, ExpressVPN.

The news comes as VPN technology continues to play a key role in conflict zones around the world.

VPN use in Cuba has reportedly skyrocketed after authorities disrupted internet access as part of efforts to crack down on political protesters.

If you want to test ExpressVPN’s claims for yourself, the $100,000 bug bounty for detecting vulnerabilities TrustedServer (opens in new tab) is still up for grabs.


Recent Posts

Diane Miller: First Responder recalls desperate attempts to save “unresponsive” pregnant mom

A devastated first responder recalls her frantic efforts to save a pregnant mother after she…

6 mins ago

Telltale signs Brittany Higgins’ new rape trial was NOT going ahead

From the moment Brittany Higgins read her scathing statement out of court after her accused…

9 mins ago

Amazing moment: Apple store in Palo Alto was ransacked by thieves. Staff allowed it to happen

This is the incredible moment when employees at an Apple store in the heart of…

17 mins ago

Royal Variety Performance 2022: Ellie Goulding talks with the Countess Of Wessex

Royal Variety Performance 2022: Ellie Goulding talks to the Countess of Wessex after dazzling with…

19 mins ago

Francesca Packer is a billionaire heiress who drives around in a $200K Range Rover Vogue pink.

A Barbie girl in her own Barbie world! Billionaire heiress Francesca Packer drives a bright…

24 mins ago

4 Best Video Doorbell Cameras (2022). Smart, Wireless and a Word about Eufy and Ring

Wired Vs. Battery Powered: Smart doorbells require more power than traditional doorbells. You may need…

28 mins ago