Skip to main content

The Mullvad Blog

Keep up to date on developments at Mullvad. News related to our app, security updates, job posts – find it all here.

Results will update as you type

Mullvad protected against Microsoft security issue

News

A serious security issue that can negatively affect VPN users has been made public by online profile ValdikSS. If you are using Microsoft Edge / IE or Outlook while connecting through a VPN, a malicious website or email can make Windows leak a hashed version of your Microsoft account password, among other things. Read more

New Server in Singapore

News

Mullvad users can now choose Singapore in the list of countries available for connection. This should improve performance for customers in Asia and the surrounding geographical region. Read more

Mullvad not affected by recent OpenSSL vulnerabilities

News

This afternoon OpenSSL published security advisories on eight vulnerabilities. OpenSSL gave advance notice of the upcoming patch last week, so our engineers had ample time to prepare for the worst. After a short investigation we could conclude that Mullvad is not vulnerable. Read more

Yesterday's service disruption due to emergency patching

News

Less than 24 hours ago Google disclosed a vulnerability in glibc, a software library used by many Linux programs. The vulnerability likely affects a large portion of the world's servers, can be exploited remotely, and can be used to gain full control of a server. Read more

Working iOS 9 configurations

News

As we've reported before, using our old configuration files on iOS 9 will not work as intended. We have now started to provide new configuration files specifically for iOS 9 which supposedly fixes this issue on all those devices. Read more

Version 58 released

News

A bug was discovered in version 57 which caused some trouble for users running with the Windows Firewall disabled. This has now been fixed in version 58. Read more

IP exposure via UDP ports

News

We have recently become aware of a newly published method for deanonymizing VPN users. For this to work, the user must be running some software that listens to and communicates via a UDP port and either be connecting directly to the internet without a NAT router or be behind a NAT router with port forwarding enabled. Read more