ExpressVPN Removes Servers in India After Refusing to Comply with Government Order

2022-06-02 20:23

Virtual Private Network provider ExpressVPN on Thursday announced that it's removing Indian-based VPN servers in response to a new cybersecurity directive issued by the Indian Computer Emergency Response Team.

"Rest assured, our users will still be able to connect to VPN servers that will give them Indian IP addresses and allow them to access the internet as if they were located in India," the company said.

The development comes as the CERT-In has enforced new controversial data retention requirements that are set to come into effect on June 27, 2022, and mandate VPN service providers to store subscribers' real names, contact details, and IP addresses assigned to them for at least five years.

The logged user data, CERT-In emphasized, will only be requested for the purposes of "Cyber incident response, protective and preventive actions related to cyber incidents."

"The new data law , intended to help fight cybercrime, is incompatible with the purpose of VPNs, which are designed to keep users' online activity private," ExpressVPN said.

The rules, dubbed Cyber Security Directions, also mandate firms to report incidents of security lapses such as data breaches and ransomware attacks within six hours of noticing them.

News URL

https://thehackernews.com/2022/06/expressvpn-removes-servers-in-india.html

#india #server