A free Chrome extension, BiuBiu VPN – The Website Unblocker, with 20 million users, was found misusing CyberGhost's servers to host its application. CyberGhost confirmed that no user data was compromised.
How BiuBiu VPN Misused CyberGhost's Servers
TechRadar's Lead Security Reviewer, Mike Williams, discovered that BiuBiu VPN was covertly connecting users to CyberGhost's servers. This was identified through network analysis and examining the extension's source code. Williams noted that while the extension functioned as advertised, there was potential for fraud.
CyberGhost stated that the incident involved the misuse of servers linked to its legacy free service. The company expressed concern over individuals exploiting the free product and mentioned that its security team is actively working to remove the extension. They are also migrating the free proxy service to a more robust platform to prevent future misuse.
BiuBiu VPN's Response
In response to the findings, PreppHint, the developer behind BiuBiu VPN, decided to permanently discontinue the extension. The app has been unpublished from the Chrome Web Store effective immediately.
Implications for Free VPN Apps
This incident highlights the risks associated with free VPN applications. Users may unknowingly connect to servers operated by other VPN providers, potentially compromising their privacy. It's essential to research and choose reputable VPN services to ensure online security.
CyberGhost VPN Expands Server Network to 100 Countries:
- Exciting Update: CyberGhost VPN Now Has Servers in 100 Countries, Published on Monday, October 02
- CyberGhost VPN continues to break boundaries, now offering servers in 100 countries worldwide
- CyberGhost VPN just expanded its server network | TechRadar, Published on Tuesday, October 10