NordVPN, a VPN service provider, confirmed that one of its data center servers was hacked in March 2018.
According to the company, an attacker managed to gain access to a data center server in Finland using an insecure remote control system left by the data center provider. Moreover, according to NordVPN, it did not know anything about the existence of this system.
“The server itself did not contain any user activity logs; none of our apps send user-generated authentication credentials, so usernames and passwords could not be intercepted either,” the company said in a statement.
NordVPN did not disclose the name of the data center provider, but said that it terminated the contract with the owner of the servers and refused to continue using them. The company said it became aware of the breach several months ago, but did not disclose the circumstances of the incident until it was sure that the rest of its infrastructure was completely secure.
The company confirmed that it had installed an early tampering detection system, although, according to its representative, "no one could have known about the undisclosed remote control system left by the provider (data center)."
Source: 3dnews.ru