ExpressVPN | November 24, 2022
Leading consumer privacy and security company ExpressVPN has validated the security posture of all its desktop apps through three new independent audits by respected cybersecurity firms, Cure53 and F-Secure. The three new audits come just weeks after KPMG's audit of ExpressVPN's no-logs policy, underlining ExpressVPN's dedication to third-party privacy and security verifications.
Cure53 tested both ExpressVPN's macOS and Linux desktop apps through white-box penetration tests and source code audits. The assessments confirm that the apps are secured against cyber security threats from malicious adversaries. This also validates the extensive work done by ExpressVPN's engineering and security experts in building a safer, more open internet for millions of people worldwide.
F-Secure also reviewed ExpressVPN's Windows v12 app through penetration testing and source code auditing, and found no significant weaknesses. The audit verifies that ExpressVPN's latest Windows desktop app cannot be manipulated to leak information, such as a user's IP address, outside the VPN tunnel. It also confirms that the app is not susceptible to remote code execution attacks.
Having all of ExpressVPN's desktop apps audited means that users can go online with the assurance that their privacy is protected, and do so confidently.
The full audit report by Cure53 for macOS can be found here and Linux here. F-Secure's audit of ExpressVPN's Windows v12 app is available here.
"As part of our continuous trust and transparency efforts, we're proud to announce that all of our desktop apps have now been audited, These audits are a testament to the efforts we put into improving and securing our product, and we're glad to receive the validation from Cure53 and F-Secure. We're committed to delivering audits on our mobile apps soon, and will continue to ensure privacy and security at every touchpoint of our product."
Brian Schirmacher, penetration testing manager at ExpressVPN
Since 2009, ExpressVPN has empowered millions of users to take control of their internet experience. The company's award-winning consumer VPN service is backed by its open-source VPN protocol Lightway, delivering user privacy in just a few clicks. ExpressVPN's Keys password manager and Aircove router make digital privacy and security easy and accessible for all. With a commitment to transparency, ExpressVPN products have been audited by PwC, Cure53, and others.
VIRTUAL DESKTOP TOOLS
NordVPN | January 20, 2023
NordVPN, a cybersecurity company, has confirmed its third no-log policy assurance engagement, which was conducted by Deloitte, a leading Big Four auditing firm. NordVPN is committed to protecting the privacy, security, and anonymity of its customers. This third no-log policy assurance engagement is part of that commitment.
The engagement included a thorough analysis of NordVPN's processes and configurations for standard VPN, obfuscated VPN, onion over VPN, double VPN, and P2P servers, as well as an inspection of the server configuration and central infrastructure. This showed that NordVPN's customers get a VPN service that complies with its no-logs policy.
Product strategist at NordVPN, Vykintas Maknickas, said, “We are proud to be examined for the third time, representing our continuous efforts to assure transparency to our users. We are delighted to receive the Deloitte stamp of approval, which proves that when we say privacy, we truly mean it."
(Source - Globenewswire)
The assurance engagement is the third that NordVPN has undergone, with the first being in 2018 and the second in 2020, showing the company's commitment to privacy. The full "no logs assurance engagement report" is available on NordVPN's website. Through these engagements, NordVPN has been able to provide customers with assurance that their data is secure and private.
NordVPN is a virtual private network (VPN) provider that masks your IP address and encrypts your internet connection to protect your privacy and security online. It prevents third-party snoopers such as ISPs or advertisers from tracking your online activities, and allows you to securely connect to public Wi-Fi hotspots without worrying about hackers stealing your data. With NordVPN, you can surf the internet without any restrictions, as it offers access to over 5600 servers in 60 countries. NordVPN is one of the most advanced VPN service providers in the world, offering features like double VPN encryption, Onion Over VPN, zero tracking, and Threat Protection. It is user-friendly and offers competitive pricing.
VIRTUAL SERVER MANAGEMENT,SECURITY,VMWARE
VMware | December 05, 2022
A leading provider of cloud services in the Caribbean and Latin America, Cloud Carib now joins the VMware Sovereign Cloud Initiative, helping clients better protect national sovereignty within its region of operation. The tech firm headquartered in Nassau, The Bahamas, made the formal announcement after recently attending VMware Explore 2022 Europe conference in Barcelona, formerly VMworld.
Today, 100+ countries have their own laws governing how data should be managed and stored within their sovereign borders, and most of these regulations are constantly changing. Cloud Carib, as a VMware Sovereign Cloud provider, meets the significant capabilities in delivering more secure and compliant cloud services to government organizations, those in the public sector and any client with data residency requirements or concerns.
“We’re extremely proud to be the first Caribbean company to join the Sovereign Cloud Initiative and are committed to helping Digital Transformation Initiatives realize sovereignty for the protection of the communities we serve. We’re dedicated to bringing sovereign cloud services to our clients, advancing the region’s data protection and sovereignty commitments, and supporting nations as they modernize and protect their data within their borders,” remarked Stelios Xeroudakis, Cloud Carib’s Founder and Chief Technology Officer.
The VMware Sovereign Cloud initiative helps customers engage with trusted national cloud service providers to meet geo-specific requirements around data sovereignty and jurisdictional control; data access and integrity; data security and compliance; data independence and mobility; and data analytics and innovation.
“There is no data sovereignty without cloud sovereignty. And sovereignty does not have to come at the expense of cloud innovation,” said Rajeev Bhardwaj, Vice President, Cloud Provider Platform Solutions, VMware. “VMware Sovereign Cloud providers such as Cloud Carib can help customers innovate and drive digital transformation while reducing the risk of unlocking the value of data.”
New research conducted by Vanson Bourne commissioned by VMware reveals that over the next two years, 96% of all companies surveyed believe data will be a source of revenue, and 50% believe it will be a significant revenue source. As economic uncertainty intensifies, it is not surprising that more business leaders are zeroing in on their data as an untapped revenue source. Yet the downside is just as big: respondents identified data sovereignty as one of the key challenges facing organizations, with 95% admitting it is a concern. Organizations that fail to comply with data sovereignty regulations often must pay fines in the hundreds of millions of dollars and suffer damage to brand reputation because of data compromise.
The first jurisdiction to benefit from this rollout is our home base in The Bahamas. Joining the Sovereign Cloud initiative amplifies our decade-long commitment to this region. So, this really is just the beginning as we aim to further that commitment by offering Sovereign Cloud to each country in the region as regulations evolve and security demands increase."
Cloud Carib CEO Scott MacKenzie.
About Cloud Carib
Cloud Carib is the region’s premier provider of managed cloud services founded upon the principles of delivering quality, agility, and value for every client. Solutions range from complex bespoke dedicated private cloud offerings to hybrid cloud services. Every solution provides clients with controlled costs, unrivalled levels of service, and unparalleled levels of data protection and privacy – when and where privacy matters.
VMware is a registered trademark of VMware, Inc. in the United States and other jurisdictions. This article may contain hyperlinks to non-VMware websites that are created and maintained by third parties who are solely responsible for the content on such websites.