Tag Archives: NordVPN

USB Juice Jacking Is New Way Hackers Attack Travelers

How to avoid being hacked during this Fall’s travel season. 

According to a recent study by cybersecurity firm NordVPN, one in four travelers has been hacked when using public Wi-Fi while traveling abroad. However, unsecured Wi-Fi is not the only factor travelers should be worried about. 

Last year, the FBI published a tweet (see below) warning users against smartphone charging stations in public places (airports, hotels, and shopping malls). Hackers may have modified the charging cables with the aim of installing malware on phones to perform an attack called juice jacking. 

“Digital information, although it exists virtually, can also be stolen using physical devices. So it is important to take a 360-degree approach and secure your device from both online and offline threats,” says Adrianus Warmenhoven, a cybersecurity advisor.

What is juice jacking?

Juice jacking is a cyberattack where a public USB charging port is used to steal data or install malware on a device. Juice jacking attacks allow hackers to steal users’ passwords, credit card information, addresses, names, and other data. Attackers can also install malware to track keystrokes, show ads, or add devices to a botnet.

Image

Is juice jacking detectable?

Juice jacking attacks can be difficult to detect. If your device has already been compromised, you may notice some suspicious activity – but that won’t always be the case.

For example, you may notice something you don’t recognize on your phone — like purchases you didn’t make or calls that look suspicious.

Your phone may also start working unusually slowly or feel hotter than usual. Chances are you may have picked up malware. For a full list of signs to watch out for read on and find out how to know if your phone is hacked.

How to protect yourself

Since no sign of juice jacking is 100% reliable, it is best to avoid falling victim to this attack by using the following the advice:

  • Get a power bank. Power banks are a safe and convenient way to charge your device on the go. Getting a portable power bank means that you’ll never have to use public charging stations where juice jacking attacks occur. Always ensure your power bank is fully charged so you can use it on the go.
     
  • Use a USB data blocker. A USB data blocker is a device that protects your phone from juice jacking when you’re using a public charging station. It plugs into the charging port on your phone and acts as a shield between the public charging station’s cord and your device.
     
  • Use a power socket instead. Juice jacking attacks only happen when you’re connected to a USB charger. If you absolutely need to charge your phone in public, avoid the risk of infected cables and USB ports and use a power outlet. This is typically a safe way to charge your mobile device and other devices in public.

For the Silo, Darija Grobova.

Canadian Holidaymakers Charged Up To 35% More Through Canadian Websites

Vacationers booking holidays through Canadian websites are being charged hundreds of dollars more than overseas customers for exactly the same deals, research commissioned by cybersecurity company NordVPN reveals.

From luxury breaks and hotel stays to car hire, consumers are frequently being presented with wildly different prices depending on where they log on.

Using the American website for Hotels.com resulted in a staggering $805.55 saving for a 7-night stay, while hiring a vehicle through the Italian server resulted in a quote 25% cheaper than the Canadian site.

NordVPN’s researchers used its Virtual Private Networks (VPNs) to make it look to websites like they were not in Canada. They discovered savings across a range of well-known travel sites like Hertz, Expedia, Booking.com and Sixt, for a variety of countries, including Italy, Mexico and the US.

What is a VPN? A VPN disguises your IP address, while improving privacy and security. You select a country and NordVPN ensures that’s where websites think you are. VPN users are then able to see the differing content — and prices — shown to overseas consumers. 

Using a VPN, a 7-night stay this August at The Gates Hotel South Beach in Miami, Florida, through Hotels.com revealed a $805 price difference for a family of four. The Canadian website quoted $3,086 and the American site $2,280 — less than a sixth as much. Visiting the website from Italy netted a 22% saving on a 7-night family stay at Venice’s Antony Palace Hotel in August — $376 off the Canadian price of $1,732.

For those visiting the French Riviera, an exclusive 7-night stay in Hotel Casarose in August would cost 16% less using the French version of Hotels.com website, lowering the price from $4,363 to $3,656.

Fans of the UK royal family planning to stay near Kensington Palace could save 13% by using the English Booking.com site, reducing a week’s stay in August at the Twenty Nevern Square Hotel from $4,260 to $3,715. 

Going to Booking.com from a French server led to a $1073 lower price on a 7-night vacation at the Hôtel Alfred Sommier in Paris in August — bringing the cost down to $8,922. Meanwhile, using an Italian server to search the Rentalcars.com website for car hire in Rome quarter (25%) cheaper than the same company’s offer to Canada-based consumers.   

Browsing for more summer hotel deals using the Mexico website of Expedia uncovered a 22% saving for a week break in Cancun at El Taj Oceanfront & Beachside Condo Hotel, leaving bookers $614 better off.

Looking at car hire deals from Hertz through the UK’s website, you could bag a 23% saving — $345 — on a 7-day hire of a Polestar at Edinburgh Airport in August, bringing the price down from $1,482 to $1,137. Using Sixt to book a rental from the Nice Airport in August, this time with Sixt brought up a 13% discount of $92 for hiring a Peugeot 208 for 7 days, making the French server price $650 versus $742.

Also, Sixt quoted a price that was 16% lower for a Jeep Grand Cherokee in Orlando, Florida via the US website for July — charging $867, a saving of $164. 

Visiting Sixt from France delivered the 11% discount, with a 7-day hire of a Tesla Model Y from Paris Charles de Gaulle Airport offered for $1038, $122 less than the Canadian website’s quote of $1160.

The research was commissioned by NordVPN and conducted by an external company between March 10th and 31st, 2023. Simultaneous searches were made for identical products being sold by the same vendor using numerous country servers.

When conducting the research, there were cases when prices offered to consumers in different countries were similar. However, for illustration purposes, this article and table present the biggest differences in price. 

Table: Cost of items booked through Canadian versus local websites

CompanyWhatWhenDate SpottedCanada price (CAD)VPN PricePrice DiffSaving (%)
Hotels.com7 night stay in The Gates Hotel South Beach – a DoubleTree by Hilton located in Miami, FloridaAugust 14-21March 10$3,086$2280.45$805.5526%
Rentalcars.comHiring a Fiat Tipo for 7 days and picking up from Rome Fiumicino AirportAugust 14-21March 28$1,353.92$1021.93$331.9925%
HertzHiring a ‘full size’ Polestar 2 for 7 days and picking up from Edinburgh Airport on a pre-pay priceAugust 14-21March 22$1481.75$1,136.92$344.8323%
Expedia7 night stay in El Taj Oceanfront & Beachside Condo Hotel in Cancun, MexicoJuly 3-10March 29$2,737$2,122.62$614.3822%
Hotels.com7 night stay in Antony Palace Hotel, Venice, Italy in a superior quadruple roomAugust 14-21March 28$1,732$1355.94$376.0622%
Hotels.com7 night stay in Hotel Casarose on the French Riviera, France in an Exclusive Suite roomAugust 14-21March 28$4,363$3656.93$706.0716%
SixtHiring a Jeep Grand Cherokee and picking up from Orlando International AirportJuly 10-17March 29$1,031.61$867.27$164.3416%
Expedia7 night stay in Antico Palazzo Rospigliosi in Rome, Italy in a quadruple roomAugust 14-21March 28$2,165$1,834.99$330.0115%
Booking.com7 night stay in Twenty Nevern Square Hotel, Kensington, London, UK. Based on two separate rooms to accomadate family of 4August 14-21March 28$4,260$3,715$54513%
SixtHiring a Peugeot 208 for 7 days and picking up from Nice AirportAugust 14-21March 28$742.07$649.59$92.4813%
Booking.com7 night stay in the (5 star) Hôtel Alfred Sommier, Paris, France in a two connecting double room.August 14-21March 30$9,996 (inclusive of additional taxes)$8,922.68$1,073.3211%

Source: NordVPN

Marijus Briedis, Chief Technology Officer at NordVPN, said: “In the internet age it’s never been easier to hunt for a vacation, and you can have all the elements — from car hire to hotel stays — arranged at the click of a mouse. 

“For the unsuspecting consumer there’s a price to be paid for these advances. Online tracking used by travel websites means that they can tell what holiday we’re looking for before we do, while algorithms can adjust holiday prices to the spending power of different countries.

“Never assume you’re getting the same deal as everyone else. Your location, the number of visits you pay to a website, and how your search fits in with the school holiday schedule, can all influence the price you’re offered.

“The best way to fight back is to shop around with the same provider using a VPN and see if you can find hidden savings offered to customers overseas. As our research shows, it could save you thousands of dollars a trip.”

How to save on holiday bookings with a VPN

There’s no need to overpay for a holiday abroad. Using a VPN can save you a lot of money – and it’s easy to get started.

Make sure you choose a reliable VPN provider that takes your privacy and security seriously. Though looking for a free option may be tempting, it’s best to stay clear of free VPNs. Here’s how to save on holiday bookings with a VPN:

  1. Get a VPN subscription. If you’re interested in NordVPN, you’ll find our subscription plans here.
  2. Download and install the VPN app on your device.
  3. Launch the app and enter your credentials to sign in.
  4. Pick a server in a country of your choice, and connect to it.
  5. Head to the provider websites and note down the prices.
  6. Repeat this process with several server locations to find the best price. We also recommend clearing your browser’s cache before returning to the site so it doesn’t identify you as a returning user and impact the price you’re shown.

Even though this process might take a little longer than you’re used to, you’re likely to find some great deals to make it worthwhile. This method will work for finding cheaper flights, hotels, car rentals, and even general online shopping.

Study: Is your phone reading your mind? 33% of Canadians have noticed being tracked by their gadgets

Digital privacy expert discusses the possible violation of privacy and security of cross-device tracking 

Third of Canadians (33%) have ever noticed an ad on their devices of something they recently spoke about or saw on TV (but hadn’t searched for), according to research by NordVPN, a leading cybersecurity company. A majority of them noticed such ads on their smartphones (76%), computers (49%), or tablets (29%). Moreover, such experience made more than 4 in 10 (46%) Canadians feel tracked/followed as well as scared (12%). 

“That’s due to ultrasonic cross-device tracking. That’s when smartphones have apps that are continuously listening to inaudible, high-frequency ultrasonic sounds from the surroundings and gather a lot of information about you — all without your knowledge. Later, they share this data across other devices,” says Adrianus Warmenhoven, a digital privacy expert.

While tracking people’s behavior across devices is beneficial to marketers, cross-device tracking is often questioned by privacy experts because of its lack of transparency, security and protection of sensitive consumers’ data. 

What do our American friends think?

Ultrasonic cross-device tracking — a trending rise 

Ultrasonic cross-device tracking is used as a method to link all the devices you own to track your behavior and location. These ultrasonic audio beacons can be embedded in many things we interact with daily: TV shows, online videos or websites, or apps on our phones.

Imagine you are watching TV and you see  chocolate being advertised. You pick up your phone, and the same chocolate ad appears on your screen. By using ultrasounds, audio beacons can detect when your phone is nearby, and apps on your phone can listen for approximate audio beacons to track what you are doing.

“Many apps currently ask for permission to access the smartphone’s microphone to incorporate a particular type of ultrasonic beacon to track them. Since it requires no mobile data or Wi-Fi connection but only microphone access to listen to beacons, tracking works even when you have disconnected your phone from the Internet.

“It’s not possible to stop ultrasonic beacons from emitting sound frequencies around you. Therefore, the best way to reduce the chance of your smartphone listening for beacons is to simply restrict unnecessary permissions you have granted to the apps installed on your device,” says Adrianus Warmenhoven.

How can you reduce cross-device tracking?

NordVPN research shows that 65% of Canadians don’t know how to restrict their smartphone’s permissions from listening to them. No one likes to be tracked. Therefore, Adrianus Warmenhoven suggest several ways people can reduce the incidence of this happening:

  • Use a VPN. One of the best ways to protect yourself from being tracked is by using a VPN. A VPN is a tool that encrypts every bit of information about your internet activity. It also stops IP-based tracking because it masks your IP address.
     
  • Use a privacy browser. If you want to keep yourself from tracking, it is best to use a private browser like Tor or DuckDuckGo rather than the incognito mode in Google Chrome. These browsers do not profile you or save any of your personal data for sharing with marketers.
     
  • Change app permissions. The apps on your smartphone may have some permissions that are not required. For instance, why would a photo-editing app need access to your microphone? If apps on your phone have such non-required permissions, you should revoke these permissions.

“The consolidation of power among large tech companies allows them to obtain large quantities of data about individuals across multiple platforms and devices. In this way, technology giants have even more opportunities to obtain deeper insights into individuals’ habits and preferences. Data consolidation through cross-device and platform tracking may also increase data security risks,” says Adrianus Warmenhoven. For the Silo, Darija Grobova/NordVPN.

Research: Adult Content, Streaming & Video Hosting Sites Have Most Security Threats

According to research by our friends at NordVPN, one of the leading cybersecurity companies, adult content, streaming, and video hosting sites have the most security and privacy threats, such as malware, intrusive ads, and trackers. Research shows that NordVPN’s Threat Protection feature, whose sole purpose is to protect people from such threats, blocked 344M trackers, 341M intrusive ads, and 506K malware infections in the month of December 2022 alone.

“The online world is challenging people in every single move they make. Want to read an article? Dozens of ads and pop-ups are ready to immediately cover your screen. Another privacy threat – malware – is lurking for you on websites and in files you are about to download. Websites you browse are also full of third-party trackers that analyze your browsing history to find out what you do online. It depends on you to stop it,” says Adrianus Warmenhoven, a cybersecurity advisor at NordVPN.

Adult content sites contain the biggest amount of malware

Malware is malicious software that seeks to damage or compromise a device or data. Malware’s scope varies from relatively harmless to extremely dangerous. Malicious software can track people’s data, steal sensitive information, or even delete it without your consent.

NordVPN research shows that adult content sites (21%), as well as cloud storage providers (14%) and entertainment sites (11%), contain the biggest amount of malware. In December, Threat Protection blocked 60.4K, 40.1K, and 30.9K domains of these categories respectively.

Among the most common types of malware are viruses, spyware, worms, trojans, adware, scareware, ransomware, and fireless malware.

Streaming media sites have the most intrusive ads

Intrusive advertising refers to pushing invasive and irrelevant ads in front of consumers. They irritate users by popping up unexpectedly, blocking the host page, opening new pages and windows, or playing video and audio at inopportune times.

As for intrusive ads, the majority of them were found on streaming (23%), adult content (16%), and online shopping (9%) sites. Threat Protection detected and blocked millions of them: 552M, 389M, and 226M respectively.

“Today, ad blockers are essential for both security because they block ads that can infect people’s devices and privacy because annoying ads rely on collecting data from web activity and violating people’s privacy. Also, if a website is loading slower than usual, you can blame intrusive ads. Free apps filled with unwanted ads could also drain your device’s battery faster,” explains Adrianus Warmenhoven.

image: variety.com

Video hosting sites have the biggest number of trackers

While many trackers are a tool for advertising and improving user experience, they may also become handy for online spies. Internet service providers (ISPs), marketing agencies, social media companies, and governments can access your online actions and breach your privacy.

NordVPN’s Threat Protection showed that video hosting sites (22%), cloud storage providers (16.31%), web email (16.25%), and information technology sites (12%) have the most trackers. Video hosting sites alone had 239 billion trackers blocked by Threat Protection in December 2022.

It’s worth adding that earlier NordVPN research showed that the average number of trackers per website is highest in Hong Kong (45.4 trackers), Singapore (33.5), the United States (23.1), and Australia (18.6).

“You can become less trackable online by declining third party cookies, because the website can sell your browsing data to third parties; using a VPN, which will hide your real IP address and location; installing a tracker blocker, which will stop your browsers from collecting information about you; and using privacy browsers, which can obfuscate your browser fingerprint, or ditching Google, which tracks a lot of data about you,” says Adrianus Warmenhoven.

Threat Protection scans your files before you download them, identifies threats, and blocks them before they can harm your device. The feature is free with every NordVPN subscription – and it allows you to go online without leaving a trace, protecting your privacy and improving your digital security.

Methodology: The statistics mentioned above were acquired by analyzing aggregated data gathered by the NordVPN’s Threat Protection service in January 2023. No identifiable user information was collected, reviewed, or otherwise involved when the research and compiled results were conducted.

1 In 2 Canadians Always Accept Browser Cookies

Digital privacy expert explains why often accepting cookies poses cyber risks

According to new research commissioned by internet security company NordVPN, only 3.5% of Canadians never accept cookies. To make matters worse, a whopping 43% say they always accept cookies. While most HTTP cookies are safe, some can be used to track people without their consent. Even more, cookies can sometimes be spied upon or used to fake the identity of a user, to gain access to their account or use their identity to commit a crime.

 “HTTP cookies are vital to the internet, but they are also a vulnerability to people’s privacy. As a necessary part of web browsing, cookies help web developers to provide more personal, convenient website visits. Because of cookies, websites remember you, your logins, shopping carts, and even more. But they can also be a treasure trove of private information for criminals to spy on,” says Daniel Markuson, a digital privacy expert at NordVPN. 

What are cookies, and why are they a threat?

Also known as an HTTP cookie or browser cookie, a cookie is a piece of data that’s stored on your browser whenever you visit a website. When enabled, the website will remember your preferences and any small changes you made during your last visit.

Cookies are a normal and necessary part of the internet. Without them, you couldn’t log into a website or fill your online shopping cart. However, too many cookies can become a threat to both your security and privacy.  

“People need to be aware that cookies follow you online. Even if you hide your IP address with a VPN, cookies can track what you do online and form a partial ID of who you are. Moreover, third parties can sell your cookies. Some sites earn revenue by serving third-party cookies. These aren’t functional – their purpose is to turn a profit from your data. Also, cookies are a vulnerability. With the wrong browser settings or when visiting the wrong website, cookies can introduce security vulnerabilities to your browsing experience,” says Daniel Markuson, a digital privacy expert.

68.5% of Canadians feel that their online data is used for targeted ads

Research shows that Canadians feel the consequences of collected cookies:

  • 68.5% feel that their online data is used for targeted ads;
  • 66% feel that it’s being sold to other companies.
  • Moreover, 57% and 53% respectively believe that their ​​data is analyzed by websites for their internal use and that it’s used by social media platforms for people to find the most relevant information 

“Canadians must be pretty aware of the constant pop-up requesting them to ‘Accept all cookies?’ while visiting online websites. It happens in order to comply with data privacy laws, which were designed to protect users’ personal information and force companies to state what kind of data is being collected and how it is being used,” says Daniel Markuson.  

How to stop cookies from tracking you

There are plenty of tools and tips to make your online activity more private. 

“First, navigate to your browser’s settings and choose to delete all the cookies stored in your browser. Most browsers also offer features to block unnecessary cookies automatically.  Second, use incognito mode. While incognito mode does not equal privacy, this is exactly what it was made for — setting aside a single browsing session that won’t save cookies and your history.

On a related note concerning personal data- The Public Health Agency of Canada (PHAC) tracked 33 million Canadians via their mobile devices to “monitor lockdowns” during to coronavirus pandemic. Privacy advocates said they were concerned about the data tracking.

Finally, use a VPN. One of a VPN’s core features is to hide your IP address, which is critical if you want your online searches to stay private. You can also look at installing various types of tracker blocker programs. That means that third-party cookies won’t be able to gather data about people’s browsing habits and create a detailed profile on you.

Methodology: The survey was commissioned by NordVPN and conducted by the external company Cint on October 4-12, 2021. The survey’s target group was residents of France, the USA, Canada, Australia, Germany, Spain, the Netherlands, and Poland aged 18+ (nationally representative), and the sample was taken from national internet users. Quotas were placed on age, gender, and place of residence. 7800 people were surveyed in total, made up of 800 people from Spain and 1000 people from each of the remaining countries.

Sixty Six Percent Of Canadians Take Smartphones Into Bathroom

Study: Lots of Canadians use smartphones while on the toilet

A digital privacy expert provides tips on protecting your phone on and off the john:

recent survey by the cybersecurity company NordVPN revealed that as much as 65.6% of Canadians bring their smartphones with them into the toilet. That’s a bit less than the average of all surveyed countries. While most Canadians (60%) scroll through social media during that time, barely anyone thinks of growing threats online and hackers’ attempts to compromise people’s phones.

“Canadians seem to need smartphones a lot.”

“Our previous survey already showed that Canadians spend a lot of time online- more than 22 years per lifetime which is a third of their lives,” says Daniel Markuson, a digital privacy expert at NordVPN. “Even though the majority (83%) name smartphones as the device that tracks their online behavior the most, Canadians still haven’t developed good cyber habits to protect their online lives,” he says.

Using social media and gaming — top activities for Canadians while on the toilet

The majority of Canadians admit that their time on the toilet is mostly spent scrolling through social media (60%), gaming (40%), and reading or listening to the news (35%). This shows that Canadians like entertaining themselves while in the bathroom.

Among other activities, Canadians also watch videos, movies, or television programs (33%) check work email and other tools, for example, Slack, Microsoft Teams (33%), and call or message other people (31.5%).

“While most of Canadians’ time on the loo is spent on social media, people also feel concerned about Facebook (80%) and Instagram (40%) collecting the biggest amount of their users’ data. Social media networks, ISPs, third-party organizations, websites, and governmental institutions regularly collect users’ personal data and track browsing habits for marketing or other purposes,” says Daniel Markuson.

Cybersecurity refresher for Canadians

Smartphones are evolving at a rate that is beyond belief, making us stay connected even while on the loo. However, Canadians are encouraged to not forget about their online safety, even while immersed in social media, conversations, games, or the news.

Daniel Markuson, a digital privacy expert at NordVPN, shares key tips on protecting your phone on and off the john:

  • Keep apps and the phone’s operating system (OS) up to date. Don’t skip software updates.
  • Do your research. Never download unknown apps — read up on them first.
  • Avoid unofficial app stores. They’re more likely to contain malware-ridden apps.
  • Avoid using unknown Wi-Fi. And always use a VPN when you do.
  • Be vigilant. Don’t click on suspicious links, don’t give out your number to strangers, and be wary of unknown numbers.

Methodology: The survey was commissioned by NordVPN and conducted by the external company Cint on January  19-26, 2022. The survey’s target group was residents of France, USA, the UK, Canada, Australia, Germany, Spain, the Netherlands, Poland, Lithuania aged 18+ (nationally representative), except for Lithuania (18-74) and the sample was taken from national internet users. Quotas were placed on age, gender, and place of residence. 9800 people were surveyed in total, made up of 800 people from Spain and 1000 people from each of the remaining countries. 

Image