What is whaling

Whaling is a form of phishing. In fact, is it a form of spear phishing. Phishing is an online scam that aims to reap private information from members of the general public, particularly login details for email, payment, and banking applications.

Contents [hide]

A typical phishing scam uses social engineering to impersonate a trusted party, often an authority figure and tricks the victim into voluntarily surrendering the target info. It often starts with an official-looking email. The email warns that you are about to lose access to an important site, for example, such as your email account. The body of the email includes a link to the website where you must enter your username and password. In this scenario, the email was sent from a fake address and the link goes to a page that copied the logo, layout, and graphics of the real site. When you enter your username and password to log in, that information is sent to the scammer.

With spear phishing and whaling, the end goal is the same: to gain access to a person’s account or accounts. The main difference between phishing and spear phishing/whaling is that the target of the scam is an individual. Whereas a normal phishing scam is sent to thousands of people in the hope that a few will click the link, a spear phishing email is only sent to one person or a very small group of people. The difference between spear phishing and whaling is that the target of whaling is usually a very important person — a big fish.

Who are targets of whaling?

Whaling takes a lot of time and effort and is part of a targeted campaign. It is personalized and tailored, and so requires a lot of research into an individual (called “doxxing“).

Blackmailers and gossip columnists use whaling to trick the rich and famous into giving away their secrets.

In the business world, hackers target executives and upper management to get them to wire money or glean insider information about the company’s activities. For example, if a merger is in the cards, getting shares in the target company before anyone knows about the deal would reap the investor a massive profit once the share value surges on the announcement of the deal. That information could be extremely valuable to the right person.

Another purpose of whaling in the business world is to get network and server access with a high-level administrator account, so network and systems administrators might be targeted. A skilled con artist can even use whaling techniques to get into the position where he can issue instructions as if he were an executive of the company.

What are whaling techniques?

There is no set strategy for whaling. However, the tools that hackers use in a whaling investigation are standard. Phishing strategies rely on calls to action in the emails, usually in the form of a link to a fake or infected site.

One avenue is cat phishing, where the hacker will pose as a friend of the target, or lure that person into a new friendship, either with the promise of sex or financial gain. A cat phishing exercise for whaling starts with research. What does the target like? For example, a gay man isn’t likely to be interested in nude pics of a woman. Someone who is into yachting could be hooked by an opening email that purports to be from a broker that has a sensational deal on one of the best yachts in the harbor. A wine buff could be tempted by an announcement of the arrival of a rare wine in stock, and a smoker could be hooked by the offer of a banned Cuban cigar.

So, the first step of a whaling campaign involves researching the target. The second step of the campaign could go along one of many avenues depending on the aim of the attack.

What attacks does whaling aid?

If the purpose of whaling is to get malware onto a company’s network through a high-level user account, then just getting the target to visit a web page could be enough. In this strategy, you would set up a web page that covers a subject of interest to the target. You would embed JavaScript in the page that could call on system resources on the target’s computer. The system resources contact a command and control server that will then download spyware and other malicious programs onto the executive’s computer. This is a fileless malware infection. An example of whaling used to facilitate a fileless malware attack is Operation Cobalt Kitty, which was launched against an Asian corporation in 2017.

If the scammer wants the executive’s passwords, then he is going to have to set up a form of phishing scenario, but for whaling. You will need to create a copy of the corporate login page and then send the target a spoofed email from the IT department asking him to follow a link to the page and log in. With a high-level user account, a hacker can log in at will, steal information, set up monitoring software, or destroy data.

Some whalers may attempt cat phishing. This involves posing as a friend, or establishing a rapport. This exercise could get the target to reveal personal information or details of ongoing negotiations. The information disclosed by the target could then be sold or used for blackmail.

Spoofing is a typical phishing method. It involves altering the information in an email header to impersonate a trusted entity. For example, an email display name can be anything the scammer wants it to be, or the email address might be made to look like it came from an official source. The forged site linked to in a phishing email can also be spoofed by using a URL or domain that appears to belong to the official site, but does not.  These are very common examples of spoofing.

Masquerading involves creating email addresses that seem to belong to a company or person, but actually belong to the hacker. This is necessary if the hacker wants a reply back. Although it is possible for a hacker to break into someone’s email account and send out an email, the scam could be quickly discovered and thwarted by the real account holder. Masquerading allows a hacker to pose as someone else without that person ever being aware of his doppelganger. According to Mimecast, masquerading accounts for 72 percent of whaling attacks.

In order to gain from a whaling attack, the masquerader would need to know the name of an executive and all of the people that person interacts with. It would be important to know the victim’s schedule and what activities that person regularly performs at the workplace. This builds a profile of acceptable behavior.

The next point involves setting up a copy of the target company’s website, or at least its domain, so it is possible to send out emails in that name. So, imagine that you want to pose as Barry Hartnell, CEO of Magimeg Corp in Houston, Texas. Let’s say that Magimeg Corp’s website has the domain magimeg.com. The scammer buys the domain magimegcorp.com and sets up an email account in the hosting account’s dashboard for barryhartnell@magimegcorp.com. They can then start sending out instructions to the CFO to transfer funds to an account in the Cayman Islands.

Such a scam would be more likely to succeed if the locations and the actions in your messages tie in with the person that you are mimicking. So, in the above example, if Barry Hartnell was still sitting in his office when you sent the email, the scam would collapse as soon as the CFO walked down the corridor to ask Barry for confirmation. However, if Barry Hartnell was actually in the Cayman Islands at the time on a trip to carry out a takeover of a local company, then the request for a transfer of funds would make perfect sense.

A whaling attack might not be as straightforward as telling someone to wire money. A company executive can also send out instructions to buy products, with payments going to a fake account even though those goods will never arrive. The HR director could ask the IT department to set up a user account with system privileges for the new network administrator who will be working from home. A hacker can achieve many damaging tasks thanks to a successful whaling expedition.

Examples of business whaling attacks

Corporations that have been stung by any type of hacker attack often don’t want any news of the attack to leak out. So, it is very difficult to get a full picture of the prevalence of whaling. The Operation Cobalt Kitty example given above is one instance where a whaling expedition was used as an entry point for malware onto a company’s network.

It seems difficult to believe that any company would have systems in place that allowed an executive to have money wired out just by sending an email, but many do. Hackers got employees at Ubiquiti Networks to transfer $46 million in 2015.

In what was probably the most profitable whaling scam of all time, a Belgian bank, Crelan, was conned through whaling into transferring more than 70 million Euros.  The gains from a successful whaling expedition are potentially massive, which is why it can be worth the time and effort for a hacker team to go into very detailed research on a target and the people that surround him or her.

How can I protect my company against whaling?

No matter what detection methods you put in place, there is probably a hacker that can get around it. For example, if an executive or an administrator is blackmailed, the instructions that implement the theft will actually originate with the real person in the organization and not a con artist pretending to be that person.

As with any type of corporate defense strategy, business procedures should guard against giving a single person too much power or unrestricted access to all of the resources of the company.

In cases where whaling is used to sneak malware through a high-level account, tighter access controls would block the infection, reveal it, or at least limit its spread. In the case of Operation Cobalt Kitty, for example, using the executive’s account enabled malware to replicate all over the network and into servers and databases. Requiring separate logins for different resources and using two-factor authentication can prevent the spread of malware and limit the infection to the target’s desktop computer.

Some whalers just want to get the target to open an infected link. So, a company policy should state that no one, not even executives, should use the company’s resources for their private web surfing. Similarly, you should ban all system users from accessing private email on the company network and educate all users about the dangers of attachments. As much of the research of whaling focuses on the personal life of the target, shutting down personal use of company resources will block a lot of the tricks that whalers hope to use in order to gain access to the company network.

Getting an email server that can analyze the addresses of correspondents and filter spam emails can help root out masquerading attacks.

User device tracking software is another useful defense against the consequences of whaling. Multiple logins by same user in several physical locations should highlight compromised accounts.

How can I protect myself against whaling?

The starting point of whaling is doxxing — research into a person’s life. Unfortunately, the popularity of social media and the tendency of people to brag mean that it can be very easy to compile detailed information on the lives of the majority of the population. If you don’t want people to know about your life, don’t post details on social media. Only accept friend requests from people that you know and ask your friends and relatives not to post comments about you online. Don’t be tempted to talk about your own life in any Twitter feeds, just stick to business issues. Also, try to limit the information you write about yourself on LinkedIn.

Stripping out personal details from any online profile will help you to limit your exposure to whaling. As a high profile individual, it would be a menial task to discover where you worked in your last job, and a scammer could use that to establish contact with you. Whatever information is out there about you, be cautious about anyone who is over-friendly in business exchanges and don’t be tempted by calls to action that instill a sense of urgency.

Many phishing attempts try to frighten the target into disclosing information or visiting login pages. Read all emails with skepticism. If you receive a warning that an online service you use for business is about to be closed unless you take action, contact that service’s customer support team directly rather than following the instructions in the email. Never click on any links in those warning emails and never download attachments. If in doubt, call the business that the warning email is supposed to be from.

Be aware of doxxing and whaling

Whaling and its supporting practice of doxxing are relatively new techniques. As types of scams become well known, their effectiveness shrinks. Whaling has proved successful in the past, but you can be part of the solution. Don’t be too trusting in your business dealings and don’t regard business contacts that you have never actually met as anything other than strangers. Be sure to verify the identities of people whom you do know online through some means other than email.

Image: Crackers by elhombredenegro via Flickr. Licensed under CC BY-SA 2.0

 

Latest guides
HMA not working with Hulu? Try this! February 15, 2023 / by Craig McCart Want to reduce GTA V lag? Read this! February 15, 2023 / by Craig McCart Avast not working with NowTV? Try this! February 14, 2023 / by Craig McCart PureVPN not working with BBC iPlayer? Check this out! February 13, 2023 / by Craig McCart HMA not working with iPlayer? Read this! February 12, 2023 / by Craig McCart HMA not working with Disney? Read this! February 8, 2023 / by Craig McCart PureVPN not working with Disney? Try this! February 7, 2023 / by Craig McCart PIA not working with NowTV? Try this! February 4, 2023 / by Craig McCart VyprVPN not working with Disney Plus? Try this! February 4, 2023 / by Craig McCart PureVPN not working with NowTV? Try this! February 3, 2023 / by Craig McCart
Latest Antivirus
How to avoid pop-up viruses January 16, 2023 / by Mark Gill How to remove an iPhone calendar virus December 5, 2022 / by James Milin-Ashmore What is a heuristic virus? November 28, 2022 / by Ian Garland Black Friday Deals: 60% off Panda Security (works November 2022) November 23, 2022 / by Craig McCart ESET vs Bitdefender: Which is best? July 20, 2022 / by Steve Adams
Latest App Studies
Nearly 1 in 4 children’s Google Play Apps breach the ICO’s age-appropriate design code February 17, 2023 / by Rebecca Moody 7 Best App Store Optimization Platforms July 14, 2022 / by Amakiri Welekwe 1 in 5 children’s Google Play Apps breach Children’s Online Privacy Protection Act rules June 22, 2021 / by Paul Bischoff Stalkerware app use by country June 1, 2021 / by Paul Bischoff Contact-tracing app adoption by country April 13, 2021 / by Paul Bischoff
Latest Cloud and Online Backup
Best free backup apps for Android in 2023 October 21, 2021 / by Ray Walsh 11 Best Secure File Sharing Tools & Software for Business in 2023 October 21, 2019 / by Tim Keary Rapidshare is discontinued, try these alternatives February 4, 2019 / by Aimee O'Driscoll The 5 Best Edge Services Providers October 15, 2018 / by Stephen Cooper The best apps to encrypt your files before uploading to the cloud October 11, 2018 / by Paul Bischoff
Latest Crypto
Worldwide crypto & NFT rug pulls and scams tracker August 3, 2022 / by Rebecca Moody What bitcoin is and how to buy it and use it October 14, 2021 / by Mark Gill Bitcoin fraud, theft, and security statistics May 6, 2021 / by Aimee O'Driscoll Bitcoin Price History – the value of 1 BTC over time April 19, 2021 / by Rebecca Moody How Do People Feel About Cryptocurrencies? July 31, 2019 / by Paul Bischoff
Latest Crypto Popular Posts
How to buy and pay with bitcoin anonymously April 18, 2018 / by Aimee O'Driscoll What is Bitcoin mining and how can you do it? March 7, 2018 / by Aimee O'Driscoll 15 best bitcoin wallets for 2023 (that are safe and easy to use) February 25, 2018 / by Aimee O'Driscoll
Latest Cryptocurrency Studies
Does the price of Bitcoin impact ransomware attacks and ransoms? October 17, 2022 / by Rebecca Moody Worldwide NFT heists tracker July 26, 2022 / by Rebecca Moody Worldwide cryptocurrency heists tracker (updated daily) June 28, 2019 / by Theo Tsihitas
Latest Cybercrime Studies
The average UK government employee receives 2,400 malicious emails per year April 20, 2022 / by Paul Bischoff Cybercrime victims lose an estimated $318 billion annually August 11, 2021 / by Paul Bischoff Which countries have the worst (and best) cybersecurity? February 6, 2019 / by Paul Bischoff
Latest Cybersecurity Employment Studies
2022 US Cybersecurity Salary & Employment Study – which state has the best prospects? April 5, 2021 / by Paul Bischoff 2023 US Network Administrator Salary & Employment Study – which state has the best prospects? June 25, 2019 / by Rebecca Moody
Latest Data Breaches Studies
US manufacturing & utility businesses leaked nearly 38 million records in 136 data breaches in 2022 January 26, 2023 / by Paul Bischoff Medical breaches accounted for 342 million leaked records from 2009 to 2022 August 18, 2022 / by Paul Bischoff Financial data breaches accounted for 153.3 million leaked records from January 2018 to June 2022 July 21, 2022 / by Paul Bischoff 15+ Two-factor authentication statistics 2020-2022 July 18, 2022 / by Craig McCart The State of Data Breaches in the US: Report and Statistics 2020 August 17, 2021 / by Paul Bischoff
Latest Data Privacy Management
How to remove yourself from the internet April 14, 2022 / by Ray Walsh The Best Redaction Software and Tools September 21, 2021 / by Stephen Cooper A Guide to the Federal and State Data Privacy Laws in the U.S. July 18, 2021 / by Amakiri Welekwe NIST Cybersecurity Framework Guide July 18, 2021 / by Amakiri Welekwe The Best SOC Software Tools July 12, 2021 / by Stephen Cooper
Latest Data Recovery Software
The Best Data Loss Prevention Software Tools April 18, 2019 / by Stephen Cooper
Latest Identity Theft Protection
IDX Identity vs LifeLock: Which is best? June 18, 2022 / by Kyle Schurman LifeLock vs Experian: Which is best? May 9, 2022 / by Kyle Schurman Complete ID vs LifeLock: Which is best? May 9, 2022 / by Kyle Schurman Identity Guard vs LifeLock: Which is best? April 27, 2022 / by Kyle Schurman Home Title Lock vs LifeLock: Which is best? April 19, 2022 / by Kyle Schurman
Latest Information Security
What is IP Fragmentation? March 20, 2023 / by Ray Walsh What is a tracking pixel? February 26, 2023 / by James Milin-Ashmore What is a domain fronting attack? February 9, 2023 / by James Milin-Ashmore What is my router’s IP address? February 6, 2023 / by James Milin-Ashmore How to avoid GoodWill ransomware January 29, 2023 / by Justin Schamotta
Latest Internet Studies
What internet activity would you be willing to cut down on to save energy? November 8, 2021 / by Rebecca Moody The rising tide of child abuse content on social media February 19, 2021 / by Paul Bischoff Internet Censorship 2023: A Global Map of Internet Restrictions January 15, 2020 / by Paul Bischoff Which government censors the tech giants the most? October 1, 2019 / by Paul Bischoff
Latest IPTV
Is Facebook profiting from illegal streaming? June 11, 2019 / by Sam Cook How to set up IPTV on Perfect Player January 31, 2019 / by Tom Blackstone Kodi Solutions IPTV: What is Kodi Solutions? Is it your next IPTV? September 24, 2018 / by Tom Blackstone Area 51 IPTV: What is Area 51 IPTV and should you use it? September 23, 2018 / by Tom Blackstone Terrarium TV shut down: Use these top 10 Terrarium TV alternatives September 18, 2018 / by Sam Cook
Latest Kodi
Kodi in steep decline after introduction of anti-piracy steps February 28, 2022 / by Sam Cook Can You Watch Tyson vs Jones on Kodi? August 13, 2020 / by Sam Cook How to install the PBS Kids Kodi addon September 25, 2019 / by Ian Garland How to watch AEW – All Out Free on Kodi with a VPN August 30, 2019 / by William Elcock How to watch the US Tennis Open 2021 on Kodi – free livestream August 16, 2019 / by William Elcock
Latest Kodi Popular Posts
Can you watch Bellator MMA live on Kodi? June 21, 2019 / by Sam Cook How to watch the 2022 French Open on Kodi May 21, 2019 / by Sam Cook How to watch the NCAA Frozen Four 2021 on Kodi April 10, 2019 / by Sam Cook How to watch the 2023 NCAA Final Four and Championship game on Kodi April 5, 2019 / by Sam Cook 30+ Best Kodi Addons working in 2023 (of 130+ tested) March 15, 2019 / by Ian Garland
Latest Net Admin
Getting Started With Graphite March 15, 2023 / by Amakiri Welekwe How to Deploy a Secure FTP (SFTP) Service on Microsoft Azure March 15, 2023 / by Amakiri Welekwe How to Create SFTP Server Using Cygwin March 15, 2023 / by Amakiri Welekwe Differential Backup Guide March 8, 2023 / by Amakiri Welekwe What is a Network Operations Center (NOC)? March 8, 2023 / by Amakiri Welekwe
Latest Net Admin Popular Posts
8 Best Free TFTP Servers for Windows, Linux and Mac February 28, 2019 / by Jon Watson 11 Best SFTP and FTPS Servers Reviewed 2023 February 27, 2019 / by Jon Watson 12 Best NetFlow Analyzers & Collector Tools for 2023 January 23, 2019 / by John Kimball 7 Best Bandwidth Monitoring Tools to Analyze Network Traffic Usage December 21, 2018 / by John Kimball
Latest Password Managers
Best password managers for Android in 2023 March 16, 2023 / by Mark Gill Best password managers for Mac in 2023 March 7, 2023 / by Mark Gill Best password managers for Windows in 2023 February 28, 2023 / by Mark Gill
Latest Plex
Watch your Plex library in Kodi with the Plex Kodi addon December 24, 2017 / by Aaron Phillips How to set up Plex on Chromecast and get the most out of it December 7, 2017 / by Aaron Phillips Plex vs Kodi: Which streaming software is right for you? November 1, 2017 / by Aaron Phillips Installing and using the Fire TV Plex app October 31, 2017 / by Aaron Phillips The best Plex plugins: 25 of our favorites (Updated) September 20, 2017 / by Aaron Phillips
Latest Plex Popular Posts
How to get started streaming with Plex media server September 20, 2017 / by Aaron Phillips Selectively routing Plex through your VPN September 20, 2017 / by Aaron Phillips
Popular Posts
Best VPNs for Netflix: Get any version of Netflix anywhere January 5, 2019 / by Paul Bischoff 10 Best VPNs for Torrenting Safely and Privately in 2023 January 1, 2019 / by Paul Bischoff Die besten und schlechtesten VPNs für Torrent-Dateien und P2P-Filesharing 2018 September 25, 2018 / by Paul Bischoff How to make your own free VPN with Amazon Web Services May 15, 2018 / by Paul Bischoff A beginner’s guide to online censorship August 26, 2017 / by Paul Bischoff
Latest Privacy Studies
Where in the world is your child’s data safe? 50 countries ranked on their child data protection legislation May 25, 2022 / by Paul Bischoff Direct-to-Consumer DNA Testing: How protected is the genetic data you’re submitting to these websites? March 1, 2022 / by Rebecca Moody Which country has the most-watched workers in the world? April 27, 2021 / by Paul Bischoff Encryption laws: Which governments place the heaviest restrictions on encryption?  October 20, 2020 / by Paul Bischoff US state and district courts authorize 99% of interception orders – less than 4% convicted October 14, 2020 / by Paul Bischoff
Latest Ransomware Studies
Ransomware attacks on US manufacturing and utility businesses cost $5.53bn in 2022 March 3, 2023 / by Paul Bischoff Since 2018, ransomware attacks on healthcare organizations have cost the world economy $92bn in downtime alone November 14, 2022 / by Paul Bischoff Ransomware attacks cost the US $159.4bn in downtime alone in 2021 July 14, 2022 / by Paul Bischoff Map of worldwide ransomware attacks (updated daily) March 15, 2022 / by Rebecca Moody Ransomware attacks on US businesses cost $20.9bn in 2020 October 5, 2021 / by Rebecca Moody
Latest Scams Studies
90,000 Americans lost $1.58 billion to investment scams in 2021 April 27, 2022 / by Paul Bischoff Ofcom’s new measures could save UK consumers from 115m scam calls and £9.6m in fraud losses October 26, 2021 / by Paul Bischoff The State of Spam in the US: Report and Statistics October 5, 2021 / by Rebecca Moody The State of Phishing in the US: Report and Statistics 2021 July 27, 2021 / by Paul Bischoff The State of Robocalls in the US: Report and Statistics 2020  July 19, 2021 / by Paul Bischoff
Latest Sports Streaming
How to watch Naoya Inoue vs Paul Butler online December 8, 2022 / by Mark Gill How to watch Josh Warrington Vs Luis Alberto Lopez December 7, 2022 / by Ray Walsh How to watch Fury vs Chisora online November 29, 2022 / by Craig McCart How to watch Australia vs Denmark (World Cup 2022) November 28, 2022 / by Ian Garland How to watch Wales vs England (World Cup 2022) November 27, 2022 / by Ian Garland
Latest Sports Streaming Popular Posts
How to watch Spain vs. Germany (World Cup 2022) online from anywhere November 25, 2022 / by Craig McCart How to watch England vs. United States (World Cup 2022) online from anywhere November 23, 2022 / by Craig McCart How to watch United States vs. Wales (World Cup 2022) online from anywhere November 19, 2022 / by Craig McCart How to watch Gervonta Davis vs Leo Santa Cruz live online October 20, 2020 / by Sam Cook How to watch Vasiliy Lomachenko vs Teofimo Lopez live online October 16, 2020 / by Sam Cook
Latest Streaming Studies
Which countries have the most Christmas movie fans? December 8, 2021 / by Rebecca Moody The most popular Netflix Original series by country July 7, 2021 / by Rebecca Moody Celebrate July 4 with the most popular patriotic movies by state June 29, 2021 / by Rebecca Moody Screen Time Statistics: Average Screen Time in US vs. the rest of the world June 8, 2021 / by Rebecca Moody What is the world watching on Netflix? April 6, 2021 / by Rebecca Moody
Latest Studies
VPN demand rises around key Roe v. Wade dates July 6, 2022 / by Rebecca Moody Study shows you can save 85% on car rental by altering your booking location May 30, 2022 / by Paul Bischoff The top 50 most surveilled colleges in the United States March 29, 2022 / by Paul Bischoff Government Social Media Spying Powers: 50 countries ranked on social media surveillance January 19, 2022 / by Paul Bischoff Ransomware attacks on US schools and colleges cost $3.56bn in 2021 August 31, 2021 / by Paul Bischoff
Latest Surveillance Studies
China now lets citizens opt out of private face recognition. Does your country? August 12, 2021 / by Paul Bischoff Facial recognition technology (FRT): 100 countries analyzed June 8, 2021 / by Paul Bischoff CCTV surveillance in the most populated cities in the United States February 3, 2021 / by Paul Bischoff Data privacy laws & government surveillance by country: Which countries best protect their citizens? October 15, 2019 / by Paul Bischoff
Latest TV Streaming
How to watch Gotham Knights season one online from anywhere March 9, 2023 / by Ian Garland How to watch Next Level Chef season 2 online February 9, 2023 / by Mark Gill How to watch Not Dead Yet season 1 online February 8, 2023 / by Mark Gill How to watch The Real Housewives of New Jersey season 13 online February 6, 2023 / by Mark Gill How to stream The Proud Family: Louder and Prouder S2 online January 30, 2023 / by Ian Garland
Latest TV Streaming Popular Posts
How to watch Winter Love Island 2023 online from abroad (stream it free) May 30, 2019 / by Ian Garland How to watch Game of Thrones Season 8 free online April 14, 2019 / by Sam Cook How to watch Super Bowl LVII (57) free online anywhere in the world February 2, 2019 / by Sam Cook
Latest Utilities
Best video downloaders for Windows 10 in 2023 August 1, 2022 / by Aimee O'Driscoll 6 Best PC tune up software: How to tune up your PC March 22, 2021 / by Aimee O'Driscoll How to convert YouTube to MP3 February 18, 2021 / by Aimee O'Driscoll How to convert SoundCloud to MP3 February 9, 2021 / by Aimee O'Driscoll 6 Best screen recorders for Windows 10 in 2023 June 23, 2020 / by Aimee O'Driscoll
Latest VPN & Privacy
Hotspot Shield vs Atlas VPN March 20, 2023 / by Kyle Schurman HMA vs Hotspot Shield: Which is better? March 20, 2023 / by Craig McCart CyberGhost not working with BBC iPlayer? Try this! March 20, 2023 / by Mark Gill Hotspot Shield is not working with SlingTV? You should try this March 19, 2023 / by Marc Dahan PureVPN vs VyprVPN: Which is better in 2023? March 17, 2023 / by Craig McCart
Latest VPN Studies
Study: How the most popular free VPNs use your data January 16, 2019 / by Paul Bischoff