In Q3 2024, Kaspersky experts reported a staggering 2.5-fold increase in users encountering free VPN apps that are actually malware. This alarming trend continued into Q4, highlighting a growing global security threat.
A VPN (Virtual Private Network) is designed to enhance user security and privacy by masking IP addresses. This prevents Internet Service Providers (ISPs) and third parties from monitoring user activity, including the websites visited and data transmitted.
Cybercriminals are exploiting the rising demand for free VPN services. In May 2024, law enforcement dismantled a massive botnet known as 911 S5, which had utilized various free VPN services such as MaskVPN, DewVPN, and others. Users who installed these apps unknowingly turned their devices into proxy servers, routing traffic for other users. This malicious network spanned 19 million unique IP addresses across over 190 countries, likely making it the largest botnet ever created. The botnet's administrators sold access to these infected proxy servers to other cybercriminals, facilitating cyberattacks, money laundering, and widespread fraud.
Kaspersky's Eastern Europe General Director, Dragan Davidović, emphasized the misconception that VPN apps found in reputable app stores are safe, particularly free ones. Users should exercise caution and consider using a reliable VPN service along with comprehensive security solutions.
To navigate the internet safely, Kaspersky recommends:
Utilizing a comprehensive security solution like Kaspersky Premium to monitor and scan all connected devices, preventing malware access;
Using the free version of Kaspersky VPN Secure Connection for basic protection, which limits server selection and has a daily data cap of 300 MB, ensuring secure browsing;
Opting for premium access to Kaspersky VPN Secure Connection for one of the fastest VPN services available globally, with top-rated protection against phishing and other threats.