"Massive Free VPN Data Breach Exposes 360M Records"

Cybersecurity researcher Jeremiah Fowler recently discovered and reported that over 360 million user data records had been leaked in a breach with the free VPN service SuperVPN.  These records contained tons of personal information.  Fowler noticed that the smartphone app for SuperVPN was listed under different developers depending on the App Store it was downloaded from.  The Google Play Store version was credited to SuperSoft Tech, while the Apple App Store version was credited to Qingdao Leyou Hudong Network Technology Co. Both companies seem to have connections to China as the notes for each are written in Mandarin, which serves as the official language of the country.  Fowler then discovered a publicly exposed database linked with the SuperVPN app containing 133 GB of data.  This data included personal user information such as IP location, servers used, details about online user activities, device models, operating systems, refund requests, email addresses, geolocation records, unique user identifiers, and more.  Fowler took it upon himself to reach out to the email addresses listed in this database, however, the database was quickly closed shortly afterward.  SuperVPN is still available for Apple and Android devices, however, Fowler stated that he would not recommend using it.  This is not the first time the free VPN service has had information leaked as it happened once in 2016 and again in 2020.

Fox News reports: "Massive Free VPN Data Breach Exposes 360M Records"