Table of Contents
VPN (Virtual Private Networks) are being adopted by the average consumer faster than never before.
Part of this is because Edward Snowden blew the lid off Project Prism.
But they’re not alone.
Governments all over the world are becoming more Orwellian in their approach to what you can say and do online.
Which drives people to sign up for the first VPN service they come across.
Or in the case where they can’t afford a paid VPN – they use a free VPN instead.
But something my father once told me has stuck with me my entire life:
“If something sounds like it’s too good to be true, then it is too good to be true”.
Like when a company tells you they’re offering a 100% free VPN…that’s just as good as a VPN that costs $5 per month.
So, the question we’re going to tackle today is “How safe is a free VPN?”
The short answer to this is, “They’re incredibly unsafe to use”.
But it’s actually far, far worse than free VPNs being unsafe.
And we’re going to dig into why that’s the case in a lot more detail in this article.
Things cost money
Paid VPNs use a vast global network of computers to route your traffic safely from point A to point B in a safe manner, while also masking your IP address.
Like from your laptop in London to a remove computer in Colombia.
But running large networks of computers is expensive.
So that means if you’re not being charged for the use of that network, the VPN provider has to make up those costs in some other way.
Basically, somebody has to pay the bill.
We cover exactly how free VPNs do that a little further on.
You’re not going to believe some of the crap these free services pull on their unwitting “customers”.
Where’s your data stored?
Here’s the first problem – you have absolutely no idea where the information you send over a free VPN is being temporarily or permanently stored.
And there is every chance it’s being stored permanently on the servers of these free services.
This is especially true of any obviously off-shore VPN provider i.e. it’s hosted in a country where the rule of law is optional.
Or the government is actively involved in corruption perpetrated by private companies and/or third parties.
Because you don’t run into problems like that with VPNs hosted in the United States or other Western countries.
Free VPNs can contain malware
This is the kind of information that makes you want to reach for a stiff drink or strong coffee when you read it.
Or bang your head against a wall.
75% of free VPNs were found to contain malware.
Which basically means your free VPN installs one or more viruses on your computer or other device.
In many cases this is just adware, but there’s nothing to stop them from installing something far more serious like ransomware.
75% of free virtual private network companies doing this means it’s not an accident.
It’s deliberate, and therefore it’s malicious in intent.
And it’s also most likely a collaborative effort between multiple free VPN companies.
A lot of the free virtual private networks you see advertised are actually run by a handful of companies.
Selling your data
As I said at the start of this article, running a VPN costs a lot of money.
So they have to make up for that somehow.
Like by selling your data to a third party – literally anyone with the money can get their hands on it.
These other parties then relentlessly spam you with their products or services based on your personal user data.
Or they integrate your data into “marketing tools” that are then sold to subscribers.
And yes, that really does happen.
But some of the free VPN services are even more blatant than that.
There’s been multiple recorded cases of free VPNs redirecting users to third party affiliate partners.
So, they make money from selling your data wholesale to unscrupulous companies and by trying to earn affiliate commissions from you.
Which will no doubt involve routing your device to the absolute worst kinds of companies.
Free VPNs are data farms
One of the key features you should look for in a paid VPN is that they don’t store logs of your online activity.
Some are better than this than others.
But the vast majority of free VPN services absolutely do keep logs of what you did online.
How can you be certain?
Because they’re already selling your information to advertisers, and have been caught out doing that.
In fact, Hack Read estimates that 90% of free VPNs are nothing more than data farms:
And I’d be inclined to agree with them.
I actually think they’re being pretty lenient here because I’d estimate the figure is closer to 95%.
Or maybe a few percent higher…
VPNs are meant to protect your user data – not just hand it over to a third party with the deepest pockets.
But that’s the risk involved with using any type of free software these days.
Selling your computer
When your computer is idle you can set it up to do some pretty cool stuff.
But some free VPN providers do the exact same thing with your computer’s “free” time.
Except they never ask your permission.
And even worse is that it could result in your computer being part of what’s called a botnet .
These are used for criminal or illegal activities in pretty much 100% of cases.
Like sending spam from your PC, but you wouldn’t have any indication that was happening.
And this happens all the time with free VPNs – and most other types of “free” software too, to be fair.
Regular data breaches
Free VPNs are typically run by people who are more interested in cash than helping preserve your privacy.
So that usually means their internal security measures are less than useless.
This is backed up by the fact that they suffer from regular and massive data breaches.
HotSpot shield was one of the first free VPNs to get caught up in a major breach – that one made the headlines.
Which means they’re not only incapable of protecting your online privacy, but that their internal databases are wide open to outside attack.
The hilarious thing is how they deal with these breaches, “We didn’t find any problems, so there’s nothing to fix.”
Their PR departments rely on complete denial in a way that would make a politician blush with shame.
And what happens to the information stolen during a breach?
It’s sold on the Dark Web.
Rampant DNS leaks
68% of all free VPNs experienced serious and ongoing issues with DNS leaks.
A DNS leak, in plain English, is that you think you’re connecting to a VPN in say Turkey, but anyone looking at your traffic can see exactly where you’re from.
Including your originating IP address.
Which they could then reverse engineer if they chose to, revealing your physical location.
And it also means your personal identity isn’t masked or encrypted.
DNS leaks can happen even with paid VPN providers, but they’re pretty rare.
But you’re almost guaranteed to have this problem with the vast majority of free VPNs.
This one flaw renders any free VPN service I can think of completely pointless for use online.
No data encryption
This was a tough one to get my head around, but the numbers don’t lie.
82% of all tested free VPNs offer no encryption of user data…even though they advertise that your traffic will be encrypted when using their service.
What this means is that your ISP can see data leaving your PC, track it wherever you go online, and then what comes back to your PC.
One of the most basic functions of a good VPN is that it encrypts your data so that your ISP can only see that you’re connected to the Internet but not where your connection ends.
Some of this is accidental on the part of the free VPN providers.
But most of it is because they simply won’t invest in the technology to stop this from happening.
You get ZERO anonymity
A paid VPN specifically tries to mask your online activities as much as possible.
The better paid VPNs sometimes going as far as sending your Internet traffic through multi-hop connections.
Free VPNs on the other hand do the exact opposite to this.
Because 75% of them install tracking software of some kind on your computer or device.
Because that provides them with even more data to sell and/or opportunities to spam you with ads.
Things are changing…
The problem with free VPNs, and their blatantly illegal shenanigans, got so serious that even Big Tech companies were forced to pay attention.
Google and Apple promptly removed dozens of free VPN apps from their online stores, including Chrome browser extensions.
It was just a storm of bad press for them so they swept the worst offenders under the rug.
With that said, I absolutely would not – and I mean under any circumstances – use a free VPN app or browser extension.
Not from any company that doesn’t expressly offer a paid service.
And even then, I’d be careful.
Because, as I said earlier, there’s no such thing as a free lunch, folks.
Never has been.
Never will be.
Wrapping things up
As you can see, the free VPN industry has one goal – to rip you off.
I learned this the hard way from using a free VPN about a decade ago.
It started a cascading effect where my personal details were exposed in one database breach after another.
I’m still paying for that mistake today.
If you’re still on the fence about whether or not free VPNs are safe to use, let me put it this way.
You’d be less at risk connected to a random public Wi-Fi hotspot with your AV software disabled…and your password printed on the back of your head.
Using free VPNs is the equivalent of literally begging for your personal information to be stolen and sold on the black market.
And if you can’t afford the $5 it costs for a paid VPN then maybe you’re not really concerned about keeping the government and advertisers away from your private life.
Believe me, there’s no comparison between a free VPN service and a paid VPN provider.