NordVPN review 2023
NordVPN is perhaps the world's most beloved VPN. With glowing reviews all across the web, highlighting the platform's high speeds, online security tools, streaming and torrenting capabilities, and web browsing tools – it's certainly a product worth your attention.
NordVPN is one of the best VPNs on the market in 2023. Headquartered in Panama, this VPN service offers its in-house built NordLynx tunneling protocol that guarantees top speeds. There’s unbreakable encryption and an independently-audited no-logs policy for complete anonymity. Its intuitive apps are packed with unique features, such as Meshnet, making NordVPN an excellent option for beginners and power users.
However, you can also come across some spotted kinks of NordVPN. For instance, annoying glitches after software updates are the ones that put its users in doubt.
But let's dig a little bit deeper with this NordVPN review: how good is this VPN for beginners and power users? Is NordVPN safe? How does it perform in terms of streaming and torrenting? Read on to find out.
NordVPN pros and cons
Pros
- Excellent performance and speed
- Intuitive apps for most devices
- Solid, independently audited security features
- Unblocks many streaming websites
- Great 24/7 customer support
- Affordable price
- 30-day money-back guarantee
- 7-day free trial
Cons
- Linux client has no graphic interface
- No router app
Is NordVPN safe?
NordVPN is one of the safest VPN providers. Market-leading encryption and secure tunneling protocols ensure that your data is safe, and all of NordVPN's servers run on RAM. RAM servers are extremely useful for a VPN: as the data gets wiped out every time your server is restarted, there is no information for anyone to steal. A lot of NordVPN servers use this technology.
More so, NordVPN’s privacy policy has been independently audited. All in all, from a legal and a technical standpoint, NordVPN seems watertight.
More so, NordVPN’s privacy policy has been independently audited. All in all, from a legal and a technical standpoint, NordVPN seems watertight.
Encryption
After creating your account and installing your client, you can connect to any server on NordVPN's network. This connection is encrypted, making your traffic unreadable for external watchers. For that, NordVPN uses the AES-256-CBC cipher, so far still the gold standard in the VPN market. On top of that, NordLynx uses the ChaCha20 protocol, meaning you're guaranteed even more privacy and security.
You’ll be given access to the server through the use of the SHA-512 hash function. It scrambles your credentials into 512 binary digits, which to all outsiders are meaningless chunks of data. These are then compared to the cryptographic hashes generated and stored on their servers when you were creating your account, and if they match – you can come in.
This hash is actually beyond a VPN market standard. Many competing VPN providers use SHA-256. So, NordVPN is really pushing the envelope here in terms of what's possible. The SHA-512 function is more secure, granting much better safety for its users, and much more difficult to crack for anyone trying to get in.
You’ll be given access to the server through the use of the SHA-512 hash function. It scrambles your credentials into 512 binary digits, which to all outsiders are meaningless chunks of data. These are then compared to the cryptographic hashes generated and stored on their servers when you were creating your account, and if they match – you can come in.
This hash is actually beyond a VPN market standard. Many competing VPN providers use SHA-256. So, NordVPN is really pushing the envelope here in terms of what's possible. The SHA-512 function is more secure, granting much better safety for its users, and much more difficult to crack for anyone trying to get in.
Tunneling protocol
Your data is transferred between the VPN server and your device using tunneling protocols. NordVPN supports these three main options.
Here’s what they are – and what should you choose them for:
OpenVPN (UDP/TCP) – this is an open-source VPN protocol, used by many major VPN providers. It is secure and works on multiple platforms. On NordVPN, you can choose which option you like more. You can pick a safer (TCP) or faster (UDP) method. Available on all NordVPN clients.
IKEv2/IPsec – best used on mobile devices. It’s much less CPU intensive, and excellent in establishing a reconnection, making it ideal for a seamless switch between wifi and cellular data. Available on iOS, Windows, Linux, and macOS.
WireGuard (NordLynx) – this is NordVPN’s custom take on next-gen WireGuard VPN technology. It’s an upgrade on older protocols, with superior options for both speed and security. Available on all NordVPN clients.
Note: If you're setting up a VPN connection on Windows manually – beware of DNS leaks. During tests, the IKEv2 connection on Windows leaked DNS addresses. This was fixed by setting NordVPN's DNS addresses as default on my Ethernet, and IKEv2 adapters instead of Cloudflare's. So, if you're planning to go through the route of manual set up, make sure to use their proprietary DNS servers, and you should be in the clear.
OpenVPN (UDP/TCP) – this is an open-source VPN protocol, used by many major VPN providers. It is secure and works on multiple platforms. On NordVPN, you can choose which option you like more. You can pick a safer (TCP) or faster (UDP) method. Available on all NordVPN clients.
IKEv2/IPsec – best used on mobile devices. It’s much less CPU intensive, and excellent in establishing a reconnection, making it ideal for a seamless switch between wifi and cellular data. Available on iOS, Windows, Linux, and macOS.
WireGuard (NordLynx) – this is NordVPN’s custom take on next-gen WireGuard VPN technology. It’s an upgrade on older protocols, with superior options for both speed and security. Available on all NordVPN clients.
Note: If you're setting up a VPN connection on Windows manually – beware of DNS leaks. During tests, the IKEv2 connection on Windows leaked DNS addresses. This was fixed by setting NordVPN's DNS addresses as default on my Ethernet, and IKEv2 adapters instead of Cloudflare's. So, if you're planning to go through the route of manual set up, make sure to use their proprietary DNS servers, and you should be in the clear.
Colocated servers
Most VPN service providers are merely renting the servers they're offering to customers. This often means they only manage them by installing custom software, leaving some control to the third-party owning the data center. This can easily backfire.
Following a data breach at a third-party data center in 2018, NordVPN has taken major steps and converted most of their rented servers into an owned, maintained, and fully managed network. This reduces a chance of an external data breach to a minimum.
All of their servers only store data in RAM, meaning that it gets wiped off every time a server gets restarted. With no disk drives, there’s no permanent data saved.
NordVPN isn’t the first VPN provider to offer colocated servers – but it’s by far the biggest one. Here’s how NordVPN stacks up with other providers offering such a feature.
Following a data breach at a third-party data center in 2018, NordVPN has taken major steps and converted most of their rented servers into an owned, maintained, and fully managed network. This reduces a chance of an external data breach to a minimum.
All of their servers only store data in RAM, meaning that it gets wiped off every time a server gets restarted. With no disk drives, there’s no permanent data saved.
NordVPN isn’t the first VPN provider to offer colocated servers – but it’s by far the biggest one. Here’s how NordVPN stacks up with other providers offering such a feature.
Kill switch
An effective kill switch can make a world of difference. Suppose you're trying to remain anonymous, but your connection to the VPN server drops. In that case, you could expose your location and IP address and not even know about it.
For this reason, NordVPN has a system-wide kill switch, and an app kill switch.
NordVPN killswitch
The Internet Kill Switch will disable all Internet access if the client detects that you're not connected to a VPN.
The App Kill Switch only affects a specific app – imagine that you're using a VPN for torrenting and don't want any of the P2P traffic to go directly through your ISP. App kill switch on µTorrent client would close the app to prevent data leaks.
On the iOS and macOS apps downloaded from App Store, the system-wide kill switch is enabled by default and built into the client. You won't see an icon, but it will kill your connection if the connection to the VPN drops. On Windows and macOS (sideload app), you can configure the kill switch on a per-app basis. On Linux and Android, you can only enable a system-wide kill switch.
It wouldn't hurt if their feature handling were more homogeneous. That said, as a user, you get a functional system-wide kill switch on all platforms. On some, you can go as far as configuring it for specific apps. Considering that some platforms like iOS rarely even get such features, that's a technical achievement in itself.
For this reason, NordVPN has a system-wide kill switch, and an app kill switch.
NordVPN killswitch
The Internet Kill Switch will disable all Internet access if the client detects that you're not connected to a VPN.
The App Kill Switch only affects a specific app – imagine that you're using a VPN for torrenting and don't want any of the P2P traffic to go directly through your ISP. App kill switch on µTorrent client would close the app to prevent data leaks.
On the iOS and macOS apps downloaded from App Store, the system-wide kill switch is enabled by default and built into the client. You won't see an icon, but it will kill your connection if the connection to the VPN drops. On Windows and macOS (sideload app), you can configure the kill switch on a per-app basis. On Linux and Android, you can only enable a system-wide kill switch.
It wouldn't hurt if their feature handling were more homogeneous. That said, as a user, you get a functional system-wide kill switch on all platforms. On some, you can go as far as configuring it for specific apps. Considering that some platforms like iOS rarely even get such features, that's a technical achievement in itself.
Threat Protection
With NordVPN, your device will be safer than ever before. This is thanks to a feature called Threat Protection. It works by blocking the following threats:
It’s quite convenient that once enabled, Threat Protection always works in the background – you won’t need to connect to a VPN server to activate it.
- Malicious websites. You’ll be protected from accidentally visiting an infected website that could potentially infest your device with malware.
- Online ads. Tired of seeing tons of ads whenever you visit your favorite pages? Well, Threat Protection will make sure you won’t have this problem anymore.
- Trackers. With the help of trackers, websites can collect all sorts of information about you, including IP addresses and browsing habits. Luckily, NordVPN won’t let them do that anymore.
- Dangerous files. Whenever you’ll download an executable file under 20 MB, Threat Protection will scan it for malware and viruses – just like an antivirus tool would.
It’s quite convenient that once enabled, Threat Protection always works in the background – you won’t need to connect to a VPN server to activate it.
Dark Web Monitor
This spooky-sounding feature warns you of your personal data vulnerabilities. It checks dark web marketplaces and pastebins for data associated with your email address. If it ends up there, there's a good chance that services you've been using were breached by hackers.
If you’re using the same password in several places, hackers can quickly compromise you on several other platforms as well. NordVPN notifies you if your email ever ends up in a dark web marketplace.
The feature is available to iOS, Android, Windows, and macOS users.
If you’re using the same password in several places, hackers can quickly compromise you on several other platforms as well. NordVPN notifies you if your email ever ends up in a dark web marketplace.
The feature is available to iOS, Android, Windows, and macOS users.
Logging
NordVPN is based in privacy-friendly Panama. If some government would like to ask for your usage logs, they would have to contact a Panamanian court. Given that Panama has no data retention laws, NordVPN doesn't have to keep any data on their users. This is why it's essential to select a VPN service provider that isn't located in a Five Eyes country, or an otherwise invasive country.
Additionally, as indicated in NordVPN's privacy policy, if someone did serve the company a warrant or seized a server, there would be no usage data on it. Their privacy policy states:
Nord guarantees a strict no-logs policy for NordVPN Services, meaning that your internet activity while using NordVPN Services is not monitored, recorded, logged, stored or passed to any third party.
The only data their apps collect is related to crash error reports and application diagnostics data. Suppose you find that this is unacceptable to you. In that case, you can easily opt-out of anonymized app usage at any time from their client. Although, it's hardly a dealbreaker.
Additionally, as indicated in NordVPN's privacy policy, if someone did serve the company a warrant or seized a server, there would be no usage data on it. Their privacy policy states:
Nord guarantees a strict no-logs policy for NordVPN Services, meaning that your internet activity while using NordVPN Services is not monitored, recorded, logged, stored or passed to any third party.
The only data their apps collect is related to crash error reports and application diagnostics data. Suppose you find that this is unacceptable to you. In that case, you can easily opt-out of anonymized app usage at any time from their client. Although, it's hardly a dealbreaker.
Security and privacy audits
if you were reading the previous section and thought, "Well, that's all very nice, but how do I know that these promises mean anything?" Well, NordVPN hired an independent agency, PwC (PricewaterhouseCoopers), to perform an audit.
For reference, last year, PwC ranked #5 on Forbes' America's Largest Private Companies and is one of the Big Four accounting firms. NordVPN's no logs policy was audited twice: in 2018 and 2020, both times concluding that their privacy claims are valid.
NordVPN also put themselves through app security audits, as well. In 2019, cybersecurity consulting agency VerSprite conducted various penetration tests on their apps and infrastructure. You can familiarize yourself with the full NordVPN report here. All the discovered bugs were patched even before the release of the report.
Currently, they're still trying to improve their service and are offering bug bounties for those testers who manage to find bugs on their HackerOne page. So, as a cybersecurity products vendor, NordVPN is taking the necessary steps towards transparency.
For reference, last year, PwC ranked #5 on Forbes' America's Largest Private Companies and is one of the Big Four accounting firms. NordVPN's no logs policy was audited twice: in 2018 and 2020, both times concluding that their privacy claims are valid.
NordVPN also put themselves through app security audits, as well. In 2019, cybersecurity consulting agency VerSprite conducted various penetration tests on their apps and infrastructure. You can familiarize yourself with the full NordVPN report here. All the discovered bugs were patched even before the release of the report.
Currently, they're still trying to improve their service and are offering bug bounties for those testers who manage to find bugs on their HackerOne page. So, as a cybersecurity products vendor, NordVPN is taking the necessary steps towards transparency.
NordVPN servers and locations
As a VPN service provider, NordVPN is truly a global player. Their fleet consists of 5500 servers distributed across 60 countries. It's a massive overall increase from 2018 when NordVPN had only around 3,300 servers.
So, if you want to connect to a country in these continents, you'll have the most options to choose from. Otherwise, Africa may feel lacking, but it's a similar sight across many VPN providers.
As for the servers themselves, all of them run on RAM. This means all your data gets instantly deleted with every single reboot. Overall, NordVPN servers offer excellent worldwide coverage – nothing to complain about.
As for the servers themselves, all of them run on RAM. This means all your data gets instantly deleted with every single reboot. Overall, NordVPN servers offer excellent worldwide coverage – nothing to complain about.
Is NordVPN worth it?
NordVPN is an excellent VPN that flawlessly combines speed, function, and security. It boasts an independent audit, uses secure AES-256 encryption, and offers the next-gen NordLynx protocol. It’s good not only for streaming Netflix, but also for accessing the Internet from restrictive countries.
You are getting a great deal of value in terms of VPN functionality. Windows and Android users will be getting the best clients. Still, Apple users also get a bunch of nice additions. No matter which platform you're using, your device won't feel left out.
I wholeheartedly recommend this VPN service. No matter why you need a VPN, you can be sure that NordVPN will deliver.
You are getting a great deal of value in terms of VPN functionality. Windows and Android users will be getting the best clients. Still, Apple users also get a bunch of nice additions. No matter which platform you're using, your device won't feel left out.
I wholeheartedly recommend this VPN service. No matter why you need a VPN, you can be sure that NordVPN will deliver.
0 Comments