:KLOH�LW�VHHPV�WKDW�XVLQJ�WKH�VWROHQ�LQIRUPDWLRQ�
ZRXOG�KDYH�EHHQ�GL̇FXOW�IRU�WKH�DWWDFNHU��DQG�LW¶V�
LQWHUHVWLQJ�WKDW�1RUG931�DQG�LWV�FRPSHWLWRU�
7RU*XDUG�931�DJUHH�RQ�WKLV�SRLQW���,�DP�
GLVWXUEHG�E\�WKH�SRVVLELOLW\�WKDW�WUḊF�FRXOG�KDYH�
EHHQ�REVHUYHG�E\�WKH�DWWDFNHU��7KH�JRRG�QHZV�LV�
WKDW�+7736�LV�PRUH�FRPPRQ�WRGD\�WKDQ�HYHU�
before, which would greatly limit what the
DWWDFNHU�FRXOG�KDYH�REVHUYHG��,W¶V�DOVR�D�UHOLHI�WKDW�
WKH�DWWDFNHU�ZRXOG�QRW�KDYH�EHHQ�DEOH�WR�DWWULEXWH�
WKH�WUḊF�REVHUYHG�WR�VSHFL¿F�XVHUV�FRQQHFWHG�
ZLWK�WKH�VHUYHU��%XW�WKDW¶V�VWLOO�FROG�FRPIRUW��DV�LW�
UHSUHVHQWV�D�FRPSOHWH�IDLOXUH�RI�ZKDW�D�931�
FRPSDQ\�LV�VXSSRVHG�WR�GR�LQ�WKH�¿UVW�SODFH�
,�DOVR�UHDFKHG�RXW�WR�7RU*XDUG�931�WR�VHH�LI�WKH�
DWWDFNHU�FRXOG�KDYH�REVHUYHG�WUḊF�ZKLOH�
FRQQHFWHG�WR�LWV�VHUYHUV��7KH�UHSUHVHQWDWLYH�VDLG�LW�
ZDV�QRW�SRVVLEOH�EHFDXVH�WKH�FRPSDQ\�XVHV�
VHFXUH�3XEOLF�.H\�LQIUDVWUXFWXUH��3.,��
PDQDJHPHQW�WR�SURWHFW�LWV�HQFU\SWLRQ�NH\V��$�
UHSUHVHQWDWLYH�ZURWH�
“No, that would be impossible in TorGuard’s
case. [...] TorGuard’s >FHUWL¿FDWH�DXWKRULW\@�
CA private key is never stored on any VPN
server, so it would not be possible for an
DWWDFNHU�WR�GHFU\SW�SDFNHWV�ÀRZLQJ�WKURXJK�
WKH�931��:KHQ�931�WUDI¿F�OHDYHV�WKH�HQG�
user’s computer through the VPN adapter, it
is fully encrypted. Once the packet arrives at
the VPN provider, the only way to see
activity is to decrypt the packet with the VPN
provider’s private key. In theory, the
DWWDFNHU�FRXOG�WKHQ�ORJ�WUDI¿F�RU�IXUWKHU�
examine it for exploitation.”
M
a
x
E
d
d
y
That’s cold com-
fort, as it repre-
sents a com-
plete failure of
what a VPN
company is sup-
posed to do in
the first place.
