Researchers Uncover Mystery Data Breach of 300 Million VPN Records

There is uncertainty about just where the database originates from, with the named company denying all knowledge.

A security firm has raised the alarm over the data leak of over 300 million records, which it states point back to a VPN provider. That VPN provider however, is denying any involvement.

The company in the spotlight, ActMobile Networks, operates several VPN brands, including Dash VPN and FreeVPN.org, but has stated to the research company involved, Comparitech, that it doesn’t maintain databases, and isn’t responsible.

When choosing a VPN, it’s imperative to pick one that doesn’t keep records or logs of your details. Any that do could be viewing or selling your data and, should they ever be exposed, that data could be paid public to millions.

What Has Comparitech’s Research Shown?

Security firm Comparitech claims to have discovered an exposed database in early October, which held over 100GB of data and 300 million records, in various forms.

Within the data that was compromised were 45 million user records that included email addresses, encrypted passwords, full name and username; 281 million user device records including IP address, county code, device and user ID; and 6 million purchase records including the product purchased and receipts.

All in all, it represents a motherlode of data that could conceivably be used for nefarious purposes, including phishing campaigns, should it fall into the wrong hands.

While the database was closed within a week of Comparitech discovering it, the data it contained has apparently been made public.

Anyone concerned that they might have been caught in this leak should immediately change their passwords, and be vigilant for suspicious emails that could be part of an orchestrated targeted phishing campaign.

How Has ActMobile Networks Responded?

As is common in the industry, when the leaked data was encountered by the Comparitech, it claims that it immediately alerted ActMobile Networks to the incident, on October 8th. Comparitech states that it’s attempts to raise the alarm were ignored by team members, support and server administrators, and that it finally reached out on Twitter.

A week later, on October 15th, Comparitech reports that the database was closed. Unfortunately, a couple of weeks later on November 1st, the data was leaked onto hacker forums.

When Comparitech contacted ActMobile Networks, it received a response that it did not maintain databases:

 “We do not maintain databases, so whatever is referenced is false. Furthermore, if you write about us, we will take action.” – ActMobile’s response to Comparitech

According to Comparitech, if the data didn’t come from ActMobile, it came from someone trying very hard to impersonate them. The SSL certificate of the compromised server shows it belonging to actmobile.com, the WHOIS record for the IP address where the data was located is listed as being owned by ActMobile Networks, and the database held several references to ActMobile’s VPN brands.

Again, it’s worth reiterating that ActMobile have denied keeping databases, and continues to deny being the source of the compromised data.

Choosing the Right VPN

The inference that a VPN has been compromised is a serious one, as VPNs can be used to hide personal information or sensitive data, which, if revealed, could leave users extremely vulnerable.

This is why we only recommend VPNs that don’t keep logs. ActMobile claims its own brands don’t maintain databases, but as we haven’t tested any of its products, we can’t comment on this. However, we can speak with authority of the VPN services that we have tested.

What we have found in our research is that many free VPNs aren’t the great deal they appear to be. Sure, they’re “free” to the user, but even if you’re not handing over cold cash, the company is squeezing revenue out of you somehow, whether it’s through selling your data, or even sharing your bandwidth, as is the case with Hola.

If you want a good, secure VPN that won’t maintain logs and compromise your data, you’ll need to pay for it. Luckily, they’re not expensive, and you could end up paying just a few bucks a month for a solid VPN that won’t land you in hot water. We’ve listed some of our recommendations below:

0 out of 0
Price From
Lowest price for single month subscription to cheapest paid tier. Other plans are available.
Verdict
No. of Devices
Zero Data Logging
Kill Switch
Email Support
Live Chat
Free Trial
Try
Click to find the latest offers, deals and discounts from the VPN provider

$2.99/user/month (Up to 74% off!)

$2.99/month

$2.03/month

$9.99/month

$3.00/month min. ($1 per location)

~$4.87 per month

$2.19/month

$8.32/month

Super fast and easy to use, NordVPN is among the best we’ve tested. Advanced features like Onion-Over-VPN make it stand out from the crowd.

A fast VPN that performed well on our speed tests, and also owns a lot of its own server infrastructure.

A safe, easy-to-use and relatively robust VPN app that performed really well on our 2024 unblocking tests.

Affordably priced ultra-secure VPN that has great privacy features but is a little slow.

A reliable, widely-used VPN that has decent privacy controls, but it performed very poorly on our speed tests.

A decently-priced VPN that does all the basics well, but has an incredibly small server network compared to PureVPN and Co.

A decent option for seasoned torrenters, but a little pricier than PureVPN and Private Internet Access.

A user-friendly VPN based in Romania with servers optimized for streaming, but no obfuscation technology.

A highly reliable VPN with servers in more than 100 countries – but it comes with one of the heftiest price tags on the market.

6

Unlimited

10

Unlimited

8-12

Unlimited

10

7

5

30-day money-back guarantee

Yes (iOS and Android)

7 days

30-day money-back guarantee

See Deals See Deals See Deals See Deals See Deals See Deals See Deals See Deals See Deals
About our links

If you click on, sign up to a service through, or make a purchase through the links on our site, or use our quotes tool to receive custom pricing for your business needs, we may earn a referral fee from the supplier(s) of the technology you’re interested in. This helps Tech.co to provide free information and reviews, and carries no additional cost to you. Most importantly, it doesn’t affect our editorial impartiality. Ratings and rankings on Tech.co cannot be bought. Our reviews are based on objective research analysis. Rare exceptions to this will be marked clearly as a ‘sponsored’ table column, or explained by a full advertising disclosure on the page, in place of this one. Click to return to top of page

Did you find this article helpful? Click on one of the following buttons
We're so happy you liked! Get more delivered to your inbox just like it.

We're sorry this article didn't help you today – we welcome feedback, so if there's any way you feel we could improve our content, please email us at contact@tech.co

Written by:
Jack is the Editor for Tech.co. He has over 15 years experience in publishing, having covered both consumer and business technology extensively, including both in print and online. Jack has also led on investigations on topical tech issues, from privacy to price gouging. He has a strong background in research-based content, working with organizations globally, and has also been a member of government advisory committees on tech matters.
Explore More See all news
Back to top
close Thinking about your online privacy? NordVPN is Tech.co's top-rated VPN service See Deals