Is Free VPN safe?
This security report analyses whether Free VPN is safe to install on your browser. We check Free VPN for malicious behaviour, data exfiltration, suspicious permissions, and known vulnerabilities so you can decide if Free VPN is safe for your personal or enterprise fleet.
VPN proxy service with third-party tracking pixel (logonless.com), dynamic remote config from Google Drive without integrity checks, ad domain bypass exposing real IP, and machine ID tracking. No malware but poor privacy implementation for VPN.
AI-generated. Findings may contain errors. Those marked Verified have been manually reviewed.
Publishers can request a review.
Findings
Proxy server list fetched from Google Drive without integrity verification, enabling traffic redirection
The extension fetches proxy server configurations (IPs, ports, types) from a hardcoded Google Drive file URL without cryptographic integrity verification. The loadServerMap() function at service.js:124-142 retrieves and applies this configuration on startup. An attacker controlling the Drive file could redirect all user traffic through malicious proxy servers.
Undisclosed third-party tracking pixel transmits user IP and fingerprint data to logonless.com
A 1x1 invisible tracking pixel from www.logonless.com/img.php is embedded in the backup connection manager page. When users access this page, their IP address, User-Agent, and browser fingerprint are transmitted to logonless.com. This is not disclosed in the extension description and contradicts the privacy expectations of a VPN product.
Persistent machine ID generated and transmitted to freevpn.one for cross-session user tracking
On install, the extension generates a timestamp-based random machine ID (service.js:15-24) stored in chrome.storage.local. This ID is transmitted with requests to freevpn.one/tl.php on each VPN connection, enabling the server to correlate usage across sessions and link connection timing to a persistent user identifier.
+1 more finding not shown
Sign up to see all findings