10% of every Privacy Package is donated directly to the EFF. Read More...

Heartbleed

Updates:

We have a new configuration file which uses different ports and encryption keys. If you have access to our Netherlands server (you can check here) then please test it out for us and let us know if you have any issues.

  • Windows: Download TEST-NL-OpenVPN.zip and copy to your OpenVPN configs folder (usually C:\Program Files\OpenVPN\config\ or C:\Program Files(x86)\OpenVPN\config\)
  • Mac OS X: Download TEST-NL-Tunnelblick.zip and double-click to install with blackVPN/Tunnelblick

What We’re Doing About The Critical Heartbleed Bug

A critical bug in OpenSSL - known as the Heartbleed bug - has been discovered which affects web, email, instant messaging and VPN services. Only customers connecting using OpenVPN are affected - L2TP/IPsec users do not need to do anything. Hopefully nobody is still using PPTP for private communications as it is only useful for stuff like unblocking websites.

Our website blackvpn.com was NEVER vulnerable because it was running an unaffected version of OpenSSL (0.9.8g). We’ve now updated OpenSSL there anyway.

Initially we thought that no VPN servers were vulnerable as most were using an older unaffected version of OpenSSL. Unfortunately we did find some servers that were vulnerable so we updated all servers on April 8th as soon as we find out about the bug. All OpenVPN sessions were reset on 8th April as we upgraded.

Since we use ephemeral session keys the data sent and received over the VPN (aka your OpenVPN Data Channel) should be safe from this attack. The worst that could have happened is your VPN username and password were compromised which would allow someone else to use your account, so we suggest that you reset your VPN password just to be safe.

We cannot be sure that our server keys were safe from attack so we will be generating new keys and client configs to be on the safe side. Once new client configs are released we recommend everyone to download.

Updated versions of OpenVPN for Windows and Tunnelblick for Mac OS X have now been released and we recommend everyone upgrade immediately. Linux users need to upgrade to the latest version of OpenSSL as soon as possible.

We’re working on updated blackVPN Easy Setup versions for Windows and Tunnelblick and these will be released shortly. Our new easy setup versions will contain the latest OpenSSL libraries and updated VPN connection files.

Stay tuned for updates!



USA - UK - CANADA - NETHERLANDS - SWITZERLAND - LUXEMBOURG - ESTONIA - RUSSIA - LITHUANIA - UKRAINE - PANAMA - SINGAPORE

WE SEE YOU! You are in San Francisco, United States & your IP is 207.241.229.212