[NickHoff]

Me too. I cancelled my subscription about a week ago when I first heard of it (and I explained why on their cancellation form).

I'm looking at Mullvad and NordVPN. I know Nord had a MITM attack on a Finnish datacenter a few months ago and didn't immediately notify affected users. I'm having trouble understanding what it says about Nord's culture and likely behavior in the future. On a technical level, it's pretty bad when users of a VPN like this can be MITM'd. Blaming the datacenter's remote admin tools doesn't help me as a user because the same thing could happen again. I know they have a bug bounty program and audits now, but still I'm concerned that they didn't notify people which might indicate a cultural problem.

How would Nord handle a problem like this in the future, and can we still trust them?

[ac29]

You may want to read the comments and article linked here before thinking about NordVPN: https://news.ycombinator.com/item?id=21664692

They are seemingly sketchily using "residential proxies" at least for Disney+. These proxies seem to be coming from their customers, or customers of a company NordVPN is closely tied to - likely without their knowledge.

[richardARPANET]

Using NordVPN is never a smart idea. Same goes for using a VPN linked to a US company, unfortunately. Use Mullvad or https://www.ipredator.se/

[ssklash]

I use Mullvad and have had nothing but positive experiences.

[mirimir]

NordVPN apparently using residential proxies is pretty iffy.

[_8j50]

Makes blocking harder,cloud/hosting IP can't access some content.

[mirimir]

I know that it makes blocking harder.

It's just that one wonders whether the people whose devices are being used as proxies are aware of the situation.

[SahAssar]

I would never use NordVPN simply based on FUD-based advertising. The breach is just the cherry on top.

[jayalpha]

Astrill. Not the cheapest but I am very happy with it. Also to circumvent GFC