So how can we be sure now that todays VPNs are not tomorrows Onavos. :(

baby · on March 31, 2024

First, all VPNs spy on you, just don't believe these claims because they are forced by law to do it. Second, don't use a VPN that clearly states that they're analyzing your traffic data.

byyll · on March 31, 2024

> forced by law

Which law?

xvector · on March 31, 2024

National Security Letters.

byyll · on March 31, 2024

Not a law.

k8sToGo · on March 31, 2024

and your ISP will not spy on you?

cpach · on March 31, 2024

Don’t install additional root certificates.

That’s what Facebook enticed users to do here. Without that root cert they wouldn’t have been able to see as much as they did.

mgiampapa · on March 31, 2024

Certificate pinning and validation in apps for one. Onavo's VPN was really clear it collected market research data. It was as informed consent as a click-through could be.

forgotusername6 · on March 31, 2024

Interception of encrypted communications is beyond the expectation of what most people would consider "collecting market research data"

hiatus · on March 31, 2024

I would expect the exact nature of the collection to be spelled out in some TOS that users probably clicked through.