- Google's latest fraud advisory identified malicious VPNs as a rising threat
- Scammers disguise malware as legitimate VPN apps to steal users' data
- Google urges users to download VPNs only from official sources
Digital privacy is a growing concern these days, with millions turning to virtual private networks to shield their online activity.
However, in a stark new warning, Google has confirmed that cybercriminals are exploiting this need for security by distributing malicious applications disguised as legitimate VPN services. This creates a dangerous situation where a tool meant to be a shield is, in fact, a weapon used to steal sensitive user data.
The alert was issued as part of Google's November 2025 fraud and scams advisory, which details the latest trends in online threats. Alongside warnings about AI-driven job scams and holiday-themed phishing schemes, the advisory specifically calls out the danger of fraudulent VPN apps and browser extensions.
The Big Tech giant warns that threat actors are impersonating trusted VPN brands or using alluring advertising to trick users into installing software that is secretly packed with malware. For users trying to find the best VPN for their needs, this makes the selection process more critical than ever.
Talking to TechRadar, Daniel Card, a cyber-security expert and a Fellow of BCS, the Chartered Institute for IT, said: "We have been discussing as a community VPNs and risks they pose for a long time now. We had started to make some headway on this with public education and awareness. Then the UK Online Safety Act seems to have undone all of that."
The irony is sharp and concerning: in the hunt for privacy, users can inadvertently download apps that perform the ultimate privacy invasion.
Once installed, these malicious applications can deliver dangerous payloads, including info-stealers, banking trojans, and remote access tools that completely compromise a user's security.
The VPN trap: A trusted tool turned into a weapon
The effectiveness of this scam lies in the abuse of trust. Users are conditioned to see a virtual private network (VPN) as a solution, not a threat.
Criminal ecosystems exploit this by creating apps that look and feel legitimate, often getting them listed on official app stores and racking up fake reviews to appear trustworthy. But behind the friendly interface, these apps are designed to betray the user.
According to Google’s advisory, these fake VPNs can exfiltrate a treasure trove of sensitive information, including your browsing history, private messages, financial credentials, and even cryptocurrency wallet details.
This isn't just a theoretical risk. Past security incidents have revealed free VPNs that were secretly spying on their users or had hidden ties to state actors. In one case, a popular free Chrome VPN extension with over 100,000 downloads was caught taking screenshots of every website its users visited, including banking portals and private photo albums.
The allure of free services is a major part of the problem. While a recent TechRadar survey found that nearly one in four readers use free VPNs, many of these services come with significant risks.
Threat actors know that users are drawn to free or cheap downloads that promise to "just work," and they use this to their advantage, turning a user's device into a node in a criminal network.
How to protect yourself from fake VPNs
With criminals actively targeting privacy-conscious users, choosing a safe VPN requires diligence. Google's primary advice is to only download VPN apps from official sources, like the Google Play Store, and to look for apps that have an official "VPN" badge.
These measures alone aren't exacty bulletproof, though. For example, the malicious Chrome VPN extension was among the dodgy VPNs that managed to wrongly obtain Google's security badges.
Users should then be deeply skeptical of any VPN offering that sounds too good to be true, especially free services promising unlimited access with no catch. It's crucial to examine the permissions an app requests upon installation; a VPN should not need access to your contacts, photos, or private messages.
Ultimately, the safest choice is to rely on well-established, reputable VPN providers who have a transparent business model and a history of independent security audits. While some freemium VPNs from trusted brands are safe, a premium service is a small price to pay for the assurance that the tool you're using to protect your privacy isn't secretly destroying it.
According to TechRadar's independent tests, Proton VPN Free, PrivadoVPN Free, and Windscribe Free are currently the best free VPN in terms of security, privacy, and performance.
If you're willing to invest some money, though, ongoing Black Friday VPN deals make it now the most convenient time to upgrade. Among the services on offer, there's also TechRadar's top pick, NordVPN...
Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews, and opinion in your feeds. Make sure to click the Follow button!
You must confirm your public display name before commenting
Please logout and then login again, you will then be prompted to enter your display name.