Gothenburg-based cybersecurity consultancy Assured AB confirmed the security of Mullvad’s VPN servers as “no leaks or logging of customer data could be found”.
“The configuration is solid and showed no evidence of direct customer information,” the security group concludes in its report (opens in new tab).
However, a few medium- and low-risk vulnerabilities have been discovered around firewall policies and internal monitoring practices that should be improved to further minimize the opportunities for attackers.
Mullvad VPN server audit completed by Assured AB with no detection of information leaks or logging of customer data. https://t.co/lREPYFzi0jJune 22, 2022
Mullvad VPN developers now seem to be busy fixing the bugs in their servers’ infrastructure.
Among the improvements, it has already implemented more stringent ones firewall…