You've seen a lot of people talk about how a VPN will help your privacy because it encrypts your traffic and masks your IP address. Basically, a VPN works by encrypting your traffic and sending it to a remote server. This server then decrypts the data and sends it to where you want to go. On paper, this sounds really helpful but there are multiple ways this can actually hurt you.
If the target server uses HTTPS, the data is already encrypted. Adding an extra layer of encryption doesn't really help that much. If it's already encrypted, it won't help against a Man-In-The-Middle attack which is basically when someone will intercept the traffic and log it. Your ISP can already do this pretty easily but so can a VPN provider. All you're really doing is giving power to someone else, who might be even less trustworthy.
"But Aaron, I've seen a lot of reviews for this VPN and they said it was fine." A lot of these so called reviews are actually just advertisements for that VPN. It's super misleading and to back up my point, if you look at other reviews on those sites, they often say not to use other VPNs and to use theirs instead. There are legitimate VPN review sites out there, but those aren't the sites I have a problem with. If a company is going to make an advertisement, it has to look like an advertisement.
You can host a VPN yourself but remember, most VPS providers can sniff traffic just as easily as any VPN. If you want privacy, here's some ways you can do that without a vpn.
- Not using Google Chrome. Instead, use Firefox or Brave
Notice how I mentioned not using Google a lot? They are notorious for data collection. Facebook is also just as bad. And Instagram is owned by Facebook so using it does not help you. There are also browser plugins that can help you block trackers. Here is a list of the ones I use
- uBlock Origin with a custom block list imported. I use https://dbl.oisd.nl/
- PrivacyBadger is a good addition to uBlock for trackers it might not catch.
- HTTPS Everywhere is helpful because sometimes a website might accept HTTPS traffic but might not be using it. This is a good way to make sure everything does use it. (already built into brave)
Even if a VPN doesn't protect your privacy though, there are legitimate uses for them in a lot of cases.
- You're running a server for something and don't want your IP exposed to everyone who uses it
- You're on public WiFi in which case, you should use a VPN that is trustworthy
- You're torrenting stuff and don't want a copyright strike from your ISP
A VPN which does seem to do a good job checking the boxes is Mullvad because when you sign up, you are given an ID to log in with so they don't collect your email. I still don't advise a VPN for daily use though as it can still hurt your privacy and security. If you do use one though, please never do any banking stuff over it regardless of what VPN you have.