One of the most common methods hackers use to break into to your personal accounts is by simply guessing easy passwords. Using common words and easy to guess passwords can make it very simple for a hacker to gain unauthorized access. Maintaining secure password habits will go far in locking out intruders from personal and financial websites, but is it necessary to secure your VPN password? At TorGuard we believe the answer to this question is YES.
Just because TorGuard is a no log VPN provider, does not mean users should be careless with VPN password security. Depending on what your own VPN use case is, a compromised TorGuard VPN password should always be a serious cause for concern. That’s why TorGuard takes the following proactive steps to protect our member’s passwords:
Secure password requirements
Proper password security starts at account registration. Even though your cat’s name is an easy password to remember, it probably won’t pass TorGuard’s complex password requirements. We require a certain level of password complexity before allowing a user to complete checkout:
Brute force protection
Sometimes hackers use brute force methods to test thousands of passwords in quick succession in order to find a working VPN login. It is possible for some complex passwords to become victim if the password was previously compromised on another website and re-used when signing up for TorGuard VPN. We encourage users to check if any personal logins have been compromised with services like “Haveibeenpwned”.
TorGuard takes proactive steps to prevent brute force attempts on our member’s portal and VPN. This effectively stops attackers from testing long lists of hacked passwords. If a TorGuard member’s password was compromised on a separate third party website, this makes it extremely difficult for hackers to verify the TorGuard login as a “working password”.
Multiple layers of security are always better than one. TorGuard is one of the only VPN providers that offers 2 factor authentication security options when logging into our member’s portal. We recommend all members activate 2 factor and use apps like authy or Google authenticator to further protect access to their TorGuard account. This adds a second layer of security so even if an attacker obtained a TG member’s password, they would not be able to gain access without the 2 factor code.
TorGuard’s security team is constantly monitoring the internet and dark web for signs of compromised accounts. The above-mentioned methods work well in preventing password abuse, but nothing takes the place of old fashioned information gathering. If our team comes across any unauthorized re-seller promoting “free” TorGuard VPN logins that were previously compromised, we immediately reset all passwords on these user accounts.
We ask our members to report any online vendors that claim to be selling “Free” access to TorGuard VPN logins so we can take immediate action.
Keeping our member’s VPN accounts secure is TorGuard’s top priority.