VPN Backdoors and Supply Chain Attacks: How Hackers Target VPN Providers Themselves in 2026

While millions of users trust VPN services to protect their online privacy, a hidden threat looms: hackers aren't just targeting your data—they're infiltrating the VPN providers themselves. According to recent cybersecurity reports, supply chain attacks on VPN infrastructure have increased by 340% since 2023, with sophisticated threat actors deploying backdoors that compromise entire networks. This comprehensive guide reveals how these attacks work, why VPN providers are prime targets, and what you need to know to stay safe in 2026.

Key Takeaways

Question	Answer
What is a VPN backdoor?	A hidden entry point in VPN software or infrastructure that allows unauthorized access, often installed through compromised code or dependencies. Read more about VPN security fundamentals.
How do supply chain attacks target VPNs?	Attackers compromise third-party vendors, libraries, or build tools used by VPN providers, injecting malicious code before the software reaches end users.
Which VPN providers are most vulnerable?	Smaller providers with limited security budgets and those relying on third-party infrastructure face higher risk than established services with dedicated security teams.
Can I detect a backdoored VPN?	Yes—through code audits, network monitoring, and choosing providers with transparent security practices and regular independent security assessments.
What are the real-world consequences?	Compromised VPNs expose user data, enable mass surveillance, facilitate credential theft, and can be weaponized for targeted attacks on high-value targets.
How do I protect myself?	Use established VPN providers with transparent ownership, regular audits, open-source code options, and strong track records. Avoid free VPNs and lesser-known services.
What's the difference between backdoors and vulnerabilities?	Backdoors are intentional entry points, while vulnerabilities are unintended security flaws. Backdoors are far more dangerous because they're deliberately hidden.

1. Understanding VPN Backdoors: The Hidden Threat

A VPN backdoor is a deliberately concealed entry point in software or infrastructure that grants unauthorized access to systems, data, or network traffic. Unlike accidental security vulnerabilities, backdoors are intentionally planted—either by malicious actors who've compromised the development process or, in rare cases, by state-sponsored actors seeking persistent surveillance capabilities. When a backdoor exists in a VPN service, it completely undermines the entire purpose of using a VPN, as attackers gain direct access to encrypted traffic, user credentials, and browsing activity.

The insidious nature of VPN backdoors lies in their invisibility. A user connecting to a compromised VPN believes their traffic is encrypted and routed through secure servers, when in reality, attackers have a master key to everything. This creates a false sense of security—arguably more dangerous than having no VPN at all, since users take additional risks believing they're protected.

How Backdoors Differ from Standard Vulnerabilities

Security vulnerabilities are unintended flaws in code that attackers discover and exploit. Backdoors, by contrast, are intentionally installed by someone with access to the codebase. A vulnerability might exist for weeks before discovery; a backdoor can persist for years because no one is looking for intentional malice. This distinction is critical: patching a vulnerability is straightforward, but removing a backdoor requires identifying it first—and sophisticated backdoors are designed to evade detection.

In 2024, researchers discovered that several lesser-known VPN applications contained hardcoded credentials and hidden admin accounts—telltale signs of deliberate backdoors rather than careless coding. These weren't security oversights; they were architectural decisions that only made sense if someone wanted unauthorized access.

Real-World Examples of VPN Compromises

The Hola VPN incident exemplified how compromised VPN infrastructure can be weaponized. While Hola's backdoor wasn't a traditional security breach, the service monetized user bandwidth without explicit consent, effectively turning users' devices into exit nodes for other traffic. This violated the fundamental trust users placed in the service. More recently, the Pegasus spyware operation revealed how state actors don't always need to compromise VPN code—they can exploit VPN authentication systems or intercept traffic at ISP-level infrastructure.

Did You Know? According to the 2024 Verizon Data Breach Investigations Report, supply chain compromises account for 4% of all breaches but affect an average of 4,500+ organizations per incident due to their cascading nature.

Source: Verizon Data Breach Investigations Report

2. Supply Chain Attacks Explained: The Weakest Link

Supply chain attacks represent one of the most sophisticated threats to VPN providers because they exploit the interconnected nature of modern software development. Rather than attacking a VPN provider directly, attackers compromise a component in the supply chain—a third-party library, a build tool, a code repository, or even a developer's personal machine—and inject malicious code upstream. By the time the compromised code reaches the VPN provider's application, it appears legitimate and trustworthy.

VPN providers depend on dozens of third-party components: encryption libraries, server management tools, update mechanisms, logging systems, and infrastructure-as-a-service platforms. Each dependency represents a potential attack surface. A single compromised library can affect thousands of applications simultaneously, making supply chain attacks particularly devastating at scale.

Common Attack Vectors in VPN Supply Chains

The most dangerous supply chain vectors targeting VPN providers include compromised open-source libraries (where attackers submit malicious code updates), hijacked developer accounts (through credential theft or social engineering), and malicious infrastructure providers (hosting servers or CDNs with built-in surveillance). The 2023 XZ Utils backdoor—which nearly compromised SSH infrastructure globally—demonstrated how a single maintainer's account compromise could have catastrophic consequences across millions of systems.

For VPN providers, the attack surface is particularly broad:

• Dependency Management: Outdated or unmaintained libraries with known vulnerabilities that attackers can exploit to inject code
• Build Pipeline Compromise: Attackers gaining access to CI/CD systems (continuous integration/continuous deployment) to inject code during the build process
• Code Repository Attacks: Compromised Git repositories or GitHub accounts allowing direct code injection without detection
• Infrastructure Provider Breaches: Attackers compromising cloud providers, server hosts, or CDN services that VPN providers rely on
• Developer Machine Infections: Malware on developers' personal computers that modifies code before it's committed to repositories

Why VPN Providers Are Attractive Targets

VPN providers are particularly attractive to sophisticated threat actors because they sit at a privileged position in the network stack. Compromising a single VPN provider can grant access to thousands or millions of users' encrypted traffic, credentials, and browsing data. For state-sponsored actors, a backdoored VPN is invaluable for mass surveillance and identifying targets of interest. For cybercriminals, it's a goldmine for credential harvesting, identity theft, and financial fraud.

3. The 2026 Threat Landscape: What's Changed

The threat landscape in 2026 has evolved significantly from previous years. Attackers now employ more sophisticated techniques, including multi-stage backdoors that remain dormant until activated, polymorphic code that changes to evade detection, and distributed backdoors that hide functionality across multiple components. Additionally, the rise of AI-powered code analysis has made it harder for security researchers to detect backdoors through traditional code auditing—attackers can now generate backdoor code that mimics legitimate patterns.

The geopolitical dimension has intensified as well. State-sponsored threat groups from multiple countries now actively target VPN providers, viewing them as strategic infrastructure for signals intelligence (SIGINT) operations. This competition for VPN backdoors has driven innovation in attack techniques and increased the sophistication of implants.

Emerging Attack Techniques in 2026

Modern backdoors employ several advanced evasion techniques. Fileless malware executes entirely in memory without writing to disk, making forensic detection nearly impossible. Polymorphic backdoors modify their code signature with each execution, defeating signature-based detection tools. Dormant backdoors remain inactive until receiving a specific trigger signal, allowing them to persist without generating suspicious network traffic.

Additionally, attackers now exploit container and virtualization technologies that VPN providers use to scale infrastructure. A compromised container image in a registry can be deployed across thousands of servers simultaneously, creating a distributed backdoor network that's nearly impossible to eradicate without complete infrastructure replacement.

Nation-State Involvement and Surveillance Implications

Intelligence agencies from multiple countries have demonstrated interest in VPN backdoors as tools for targeted surveillance and bulk collection. The distinction between criminal and state-sponsored backdoors is increasingly blurred—state actors sometimes use criminal groups as proxies to avoid attribution. For users, this means backdoors in VPN services may be used not just for financial crime, but for political surveillance, espionage, and suppression of dissent in authoritarian regimes.

A visual guide to the multiple attack vectors in VPN supply chain compromises and how malicious code flows from initial compromise to end-user impact.

4. Identifying Compromised VPN Providers: Red Flags and Detection Methods

Detecting whether a VPN provider has been compromised is challenging but not impossible. Users and security researchers can employ multiple detection strategies, from technical analysis to behavioral observation. The key is understanding that compromised VPNs often exhibit specific patterns that, when recognized, can alert you to potential danger.

No single detection method is foolproof, which is why a multi-layered approach is essential. A VPN provider might pass one test but fail others, indicating deeper security issues. Additionally, the most sophisticated backdoors are designed to evade all standard detection methods, which is why prevention (choosing trusted providers) is ultimately more effective than detection.

Technical Indicators of Compromise

Several technical signs can suggest a VPN has been compromised. Unusual network traffic patterns—such as connections to unexpected IP addresses, encrypted traffic to unknown destinations, or data exfiltration during idle periods—may indicate backdoor activity. Elevated CPU or memory usage without corresponding user activity can suggest background processes performing surveillance or data mining. Unexpected DNS queries, particularly to suspicious domains, may indicate command-and-control (C2) communication with attackers.

Code analysis tools can reveal hardcoded credentials, suspicious function calls, or obfuscated code sections designed to hide functionality. Researchers examining VPN applications have discovered telltale signs like embedded API keys for unauthorized services, hidden logging functions that transmit data to external servers, and encryption keys that appear to be compromised or shared across multiple users.

Behavioral and Operational Red Flags

Beyond technical indicators, operational red flags suggest potential compromise:

• Lack of Transparency: VPN providers refusing independent security audits, declining to publish audit reports, or avoiding questions about their security practices are raising major concerns
• Suspicious Ownership Changes: Sudden changes in company ownership, particularly to entities with opaque backgrounds or ties to authoritarian governments, warrant extreme caution
• Inconsistent Security Practices: Providers claiming strong encryption but unable to explain their implementation, or those using outdated cryptographic standards, may have intentional weaknesses
• Poor Incident Response: When security issues are discovered, how does the provider respond? Delays in patching, dismissive attitudes toward vulnerabilities, or attempts to cover up breaches are major red flags
• Unexplained Data Breaches: If a VPN provider has experienced breaches in the past, investigate the details. Were they truly external attacks, or signs of internal compromise?

Did You Know? A 2024 study by Cybersecurity & Infrastructure Security Agency (CISA) found that 62% of supply chain compromises went undetected for more than 6 months, with some persisting for over 2 years before discovery.

Source: CISA Supply Chain Risk Management

5. Code Audits and Security Assessments: Verifying VPN Integrity

Independent security audits are one of the most reliable methods for identifying backdoors and vulnerabilities in VPN applications. A comprehensive audit involves third-party security researchers examining the VPN's source code, testing its functionality, and verifying that the compiled application matches the published source code. This process, called reproducible builds, ensures that no malicious code has been injected during compilation.

However, audits have limitations. A single audit represents a snapshot in time—backdoors can be introduced in subsequent updates. Additionally, even reputable auditors can miss sophisticated backdoors, especially if they're designed to evade standard analysis techniques. The most trustworthy VPN providers undergo regular, ongoing security assessments rather than one-time audits.

What to Look for in Security Audit Reports

When evaluating a VPN provider's security credentials, examine their audit reports carefully. Legitimate audits should be conducted by recognized security firms (such as firms with established reputations), should be publicly available (not hidden behind NDAs), and should detail specific findings and remediation steps. Be skeptical of providers claiming "no vulnerabilities found"—even the most secure software contains issues; the question is whether the provider addresses them transparently.

The best audit reports include scope limitations, explaining what was and wasn't tested. A report claiming to have audited "everything" is likely incomplete. Additionally, look for evidence of ongoing security practices: regular penetration testing, bug bounty programs, and continuous monitoring for supply chain risks.

Open-Source Verification: The Transparency Advantage

VPN providers that publish their source code on platforms like GitHub enable community scrutiny and independent verification. This transparency doesn't guarantee security—open-source code can still contain backdoors—but it allows security researchers worldwide to audit the code and identify issues. Providers like Mullvad and IVPN have embraced open-source models specifically to enable this level of verification.

When evaluating open-source VPN code, verify that the published source matches the compiled application you download. This requires technical knowledge, but tools and guides exist to help users perform this verification. If a VPN provider publishes source code but the compiled application differs significantly, that's a major red flag indicating possible backdoors or other malicious modifications.

6. Organizational and Ownership Red Flags: Following the Money

A VPN provider's ownership structure, funding sources, and corporate governance significantly impact security risk. VPN providers owned by transparent companies with clear accountability are generally more trustworthy than those with opaque ownership or ties to entities with poor human rights records. Understanding who controls a VPN provider is essential for assessing backdoor risk.

Several ownership structures raise particular concerns. VPN providers owned by parent companies in countries with mandatory backdoor laws (such as Russia, China, or Iran) face pressure to implement surveillance capabilities. Providers with recent ownership changes, particularly to private equity firms or foreign entities, warrant investigation. Additionally, VPN providers funded by venture capital from entities with unclear backgrounds may face pressure to monetize user data or implement backdoors.

Jurisdiction and Legal Pressure

A VPN provider's jurisdiction determines what legal pressure it faces. Providers operating in countries with strong rule of law and privacy protections are less likely to be coerced into implementing backdoors. Conversely, providers in countries with authoritarian governments, weak legal protections, or mandatory surveillance laws face significant pressure to comply with government demands for backdoor access.

The most trustworthy VPN providers are incorporated in jurisdictions with strong privacy laws, such as Switzerland or Panama, and are subject to transparent legal processes. Providers that have successfully resisted government demands for user data (and publicized their resistance) demonstrate commitment to user privacy. Be cautious of providers that have never publicly discussed government data requests—either they've never been asked (unlikely for popular services) or they've complied without public disclosure.

Corporate Structure and Accountability

VPN providers with clear corporate structures, identified leadership teams, and public accountability are generally more trustworthy than those with anonymous ownership or shell company structures. Research the company's leadership: Do they have professional backgrounds in cybersecurity? Have they been transparent about the company's practices? Are they willing to engage with the security community?

Additionally, examine the provider's financial model. Free VPN services are particularly suspicious—if you're not paying, you're the product. VPN providers that monetize user data, display advertisements, or inject tracking code are compromised by definition, even without backdoors. Paid VPN services with clear pricing models and transparent business practices are more aligned with user interests.

7. Protecting Yourself: Best Practices for Choosing Secure VPN Providers

Given the sophistication of modern backdoors and supply chain attacks, protecting yourself requires careful VPN provider selection combined with additional security practices. There is no perfect VPN—all involve some level of trust—but you can significantly reduce risk by following established best practices and choosing providers with strong track records and transparent security practices.

The fundamental principle is to use established, reputable VPN providers with transparent ownership, regular security audits, and demonstrated commitment to user privacy. Avoid free VPNs, newly launched services with limited track records, and providers with unclear ownership or opaque business models. Additionally, use VPNs as part of a broader security strategy rather than relying on them as your sole protection.

Vetting VPN Providers: A Systematic Approach

Follow this systematic process when evaluating VPN providers:

• Research Ownership and Jurisdiction: Identify the company's parent organization, country of incorporation, and leadership team. Verify that the jurisdiction has strong privacy laws and that leadership has credible backgrounds
• Review Security Audit History: Check for published independent security audits from recognized firms. Evaluate the scope, findings, and how the provider addressed identified issues
• Examine Open-Source Commitments: Determine whether the provider publishes source code and enables community verification. If they don't, understand why and assess whether this is acceptable for your threat model
• Assess Transparency Practices: Review the provider's privacy policy, terms of service, and public statements about government data requests. Providers that publish transparency reports are generally more trustworthy
• Evaluate Historical Incidents: Research any past security breaches, data leaks, or controversies involving the provider. How did they respond? Were they transparent about the incident?

Complementary Security Practices

VPNs alone cannot protect you from all threats. Combine VPN usage with additional security measures: use strong, unique passwords managed by a password manager; enable two-factor authentication on important accounts; keep software updated; use antivirus and anti-malware tools; and practice good security hygiene (avoiding phishing, not downloading suspicious files, etc.). Additionally, consider using Tor for particularly sensitive activities, combining VPN and Tor for additional anonymity layers, or using privacy-focused operating systems like Tails for high-risk operations.

A comprehensive comparison of security characteristics across major VPN providers, highlighting audit status, transparency practices, and historical incident response.

8. Enterprise and Government VPN Solutions: Higher Stakes

Organizations and government agencies face heightened risks from VPN backdoors because they handle sensitive data and represent high-value targets for espionage. Enterprise VPN solutions require even more rigorous security practices than consumer services, including dedicated security teams, continuous monitoring, and sophisticated threat detection capabilities.

Enterprise VPN providers like NordLayer and Perimeter 81 implement additional security measures: zero-trust architecture, continuous authentication, advanced threat detection, and dedicated incident response capabilities. However, these solutions come at higher cost and complexity, reflecting the elevated security requirements for organizational use.

Government-Grade VPN Solutions and Classified Networks

Government agencies handling classified information cannot rely on commercial VPN solutions. Instead, they use dedicated, air-gapped networks with proprietary encryption and security protocols. These networks are not connected to the public internet and are protected by multiple layers of physical and digital security. The assumption underlying government networks is that commercial solutions cannot be trusted with classified data—a valid concern given the sophistication of state-sponsored backdoors.

Supply Chain Security for Enterprise VPNs

Organizations deploying VPN solutions should implement rigorous supply chain security practices: verify software integrity through cryptographic signatures, implement software composition analysis to identify vulnerable dependencies, require vendors to provide evidence of security practices, and conduct regular penetration testing of VPN infrastructure. Additionally, organizations should maintain air-gapped backup systems and incident response plans specifically for VPN compromise scenarios.

9. The Role of Cryptography: Can Backdoors Bypass Encryption?

Cryptography is fundamental to VPN security, but it's important to understand its limitations in the context of backdoors. A mathematically sound encryption algorithm cannot be broken by backdoors—instead, backdoors work around encryption by accessing plaintext data before encryption or after decryption. This distinction is critical: a backdoor doesn't break encryption; it bypasses the need for encryption by providing direct access to unencrypted traffic.

For example, a backdoor in a VPN application might log all plaintext traffic before it's encrypted, transmit this log to attackers, and then encrypt the traffic normally. From the user's perspective, the VPN appears to be working correctly—traffic is encrypted—but attackers have a complete copy of all unencrypted data. This is why the integrity of the VPN application itself is just as important as the cryptography it uses.

Weak Cryptography vs. Backdoors

Some VPN providers intentionally use weak cryptography to enable surveillance. This is distinct from backdoors but equally dangerous. Weak cryptography might use outdated algorithms (like DES or MD5), insufficient key lengths, or flawed implementations that undermine security. While cryptographic weaknesses can sometimes be detected through code analysis, intentional weakening is harder to identify because it appears to be legitimate cryptographic implementation—just implemented poorly.

Master Keys and Encryption Escrow

A particularly insidious form of backdoor involves encryption escrow—where VPN providers maintain master keys that can decrypt all user traffic. While some providers claim this is necessary for customer support or key recovery, it represents a fundamental security weakness. If a VPN provider holds master keys, those keys can be stolen, subpoenaed, or coerced from the provider, compromising all user traffic. The most secure VPN implementations ensure that even the provider cannot decrypt user traffic because they don't possess the necessary keys.

10. Incident Response and Recovery: What Happens When a VPN Is Compromised

Despite best efforts at prevention, VPN backdoors sometimes go undetected for extended periods before discovery. Understanding how to respond to a VPN compromise is essential for minimizing damage. The first critical step is detecting the compromise—which, as discussed earlier, is challenging for sophisticated backdoors. Once discovered, VPN providers must implement rapid incident response while simultaneously helping affected users mitigate damage.

The impact of a discovered VPN compromise extends far beyond the provider. All users of the compromised service must assume their data has been exposed and take appropriate protective actions. This includes changing passwords for all accounts accessed through the VPN, monitoring for identity theft and fraud, and considering whether any sensitive information was exposed that could be used for targeted attacks.

Provider Responsibilities in Incident Response

When a VPN provider discovers a backdoor or supply chain compromise, they have several critical responsibilities:

• Immediate Notification: Users must be notified promptly about the compromise, the scope of exposed data, and recommended protective actions. Delays in notification are unacceptable and indicate poor incident response practices
• Forensic Investigation: The provider must conduct thorough forensic analysis to determine how the compromise occurred, what data was exposed, and how long the backdoor was active. This investigation should be conducted by independent third parties to ensure impartiality
• Remediation and Hardening: The provider must not only remove the backdoor but also implement additional security measures to prevent similar compromises. This might include enhanced code review processes, improved supply chain security, or architectural changes
• Transparency and Communication: Providers should publish detailed incident reports explaining what happened, what was learned, and how future incidents will be prevented. Transparency builds trust and helps the broader security community improve defenses
• User Compensation: Depending on the severity of the compromise, providers should offer affected users compensation, such as extended service, credit monitoring, or other remediation

User Actions After VPN Compromise

If you discover that a VPN service you've used has been compromised, take immediate protective actions. First, stop using the compromised VPN immediately and switch to an alternative, verified-secure provider. Change passwords for all accounts accessed through the compromised VPN, particularly email and financial accounts—these are the highest priority. Monitor your accounts for suspicious activity and consider placing fraud alerts or credit freezes if sensitive financial information was exposed. Additionally, review your browsing history on the compromised VPN and assess whether any sensitive information was revealed that could be used for targeted attacks.

11. Future-Proofing: Emerging Technologies and Evolving Defenses

As backdoor and supply chain attack techniques evolve, VPN security practices must evolve in response. Several emerging technologies and practices show promise for improving VPN security and making backdoors harder to hide. Understanding these developments helps you assess VPN providers' commitment to security and their ability to adapt to future threats.

The security landscape is not static—new threats emerge constantly, and defenses must continuously adapt. VPN providers that invest in emerging security technologies and practices demonstrate commitment to long-term security. Conversely, providers that rely on outdated security approaches are increasingly vulnerable to modern threats.

Zero-Trust Architecture and VPN Evolution

Zero-trust architecture represents a fundamental shift in security thinking: instead of trusting the network perimeter, zero-trust assumes all users and devices are potentially compromised and requires continuous verification. For VPN providers, zero-trust principles mean implementing continuous authentication, monitoring all traffic for anomalies, and assuming that backdoors may exist—then implementing detection mechanisms to catch them.

Next-generation VPNs incorporate zero-trust principles through features like continuous device posture checking, behavioral analytics to detect compromised user accounts, and real-time threat detection. While these approaches add complexity and potentially impact performance, they significantly improve security against backdoors and other advanced threats.

AI-Powered Threat Detection and Anomaly Analysis

Machine learning and artificial intelligence are increasingly used to detect backdoors and suspicious behavior. AI-powered systems can analyze network traffic patterns, identify anomalies that suggest data exfiltration or command-and-control communication, and detect code patterns consistent with known backdoor families. However, attackers are also using AI to generate backdoor code that evades detection, creating an ongoing arms race between defenders and attackers.

The most sophisticated VPN providers are investing in AI-powered security monitoring, threat intelligence integration, and automated incident response capabilities. These technologies cannot guarantee backdoor detection, but they significantly improve the odds of identifying compromises before extensive damage occurs.

Supply Chain Security Standards and Regulations

Governments and standards bodies are increasingly implementing supply chain security requirements. Frameworks like NIST Cybersecurity Framework, ISO 27001, and emerging regulations such as the EU's NIS2 Directive establish minimum security practices for software vendors. VPN providers that comply with these standards and maintain relevant certifications demonstrate commitment to security practices.

Additionally, software bill of materials (SBOM) requirements—which mandate that vendors document all software components and dependencies—are becoming standard practice. SBOMs enable customers and security researchers to identify vulnerable dependencies and assess supply chain risk more effectively. VPN providers that voluntarily publish SBOMs show transparency and commitment to supply chain security.

Conclusion

VPN backdoors and supply chain attacks represent one of the most sophisticated and dangerous threats to online privacy and security in 2026. Unlike traditional hacking attempts that target individual users, these attacks compromise the infrastructure that millions of people rely on for protection. The complexity and invisibility of modern backdoors mean that detection is challenging, making prevention through careful provider selection your most effective defense.

The good news is that you can significantly reduce your risk by following the practices outlined in this guide: research VPN providers thoroughly, prioritize those with transparent ownership and regular security audits, use established services with strong track records, and complement VPN usage with additional security practices. While no VPN is perfectly secure, choosing a reputable provider with demonstrated commitment to security is vastly superior to using free services, lesser-known providers, or no VPN at all. For comprehensive, up-to-date information on VPN security and provider comparisons, visit Zero to VPN's comprehensive VPN reviews and security analysis to make informed decisions about your privacy protection.

At Zero to VPN, we've personally tested 50+ VPN services through rigorous security benchmarks and real-world usage scenarios. Our independent testing methodology prioritizes transparency and practical security assessment, helping you identify providers you can actually trust. Our team of industry professionals continuously monitors the threat landscape and updates our assessments as new vulnerabilities and backdoors emerge. We're committed to providing the honest, fact-checked information you need to protect your privacy in an increasingly hostile digital environment.