Nym and NymVPN - Next-gen privacy with mixnet and VPN service

General Project Showcase
126

Hi! Also sharing an update on our February 18 post on NymVPN evaluation criteria. We’ve made significant progress across several areas. Happy reading, and let us know if you have questions!

:gear: Technology

  • Protocols: Our dVPN mode uses (client-side) AmneziaWG, a censorship-resistant fork of WireGuard. NymVPN does not support OpenVPN. The mixnet mode continues to use Sphinx packets. (unchanged)
  • Killswitch: Android relies on the native Android killswitch. iOS uses Apple’s “VPN On Demand” rules. Desktop apps have an always-on killswitch.
  • Multihop support: dVPN mode is 2-hop, mixnet mode is 5-hop. (unchanged)
  • Open source: Both NymVPN apps and Nym binaries are fully open source and available on Nym Technologies’ GitHub. (unchanged)
  • Censorship-resistance: We provide multiple layers: client-side AmneziaWG, QUIC protocol (via toggle in app settings), and Stealth API connect (automatically activates in censored networks). More features are coming.
  • UX: The apps remain straightforward - mode switch, location selector, and Connect button. Recent updates added server details, cities/regions and various UI improvements. A major refresh is planned for early 2026.
  • IPv6: Natively supported. (unchanged)
  • Remote port forwarding: Not currently supported. This is a popular user request we’re evaluating for future releases. (unchanged)
  • Obfuscation technology: See censorship-resistance above.

:see_no_evil_monkey: Privacy

  • Anonymous payment options: All payment methods are cryptographically unlinked from online activities using “zk-nyms” (zero-knowledge proof authentication with gateways). For maximum privacy, we accept cash, Dash, Monero, and Zcash.
  • Personal information: Access uses a randomly generated 24-word passphrase. We’re exploring privacy-friendly social login and wallet authentication options for ease of use.

:crossed_swords: Security

  • Encryption schemes: NymVPN uses cryptography including X25519/Ed25519 for handshake, AES-GCM-SIV 256-bit, AES-CTR, ChaCha20, and BLAKE2b for mixnet data encryption. dVPN mode uses AmneziaWG/WireGuard encryption. (unchanged)
  • Forward secrecy: Supported in dVPN mode using IKpsk2 Noise pattern. Mixnet mode now uses XKpsk3 between nodes.
  • Published audits: See Nym’s Audit page. The mixnet and NymVPN apps have been audited by JP Aumasson (cryptographer), Oak Security, Cryspen, and Cure53.
  • VPN servers: Decentralized network operated by independent operators. Five explicitly-labeled gateways are run by Nym for testing purposes (in Austria, Bahrain, Italy, South Africa, and Switzerland).
  • Quantum-resistance: Technical scoping complete. Development begins late 2025 for a Q1 2026 release.
  • Bug bounty: Live

:hugs: Trust

Unchanged since February 18 More details can be found on our Trust Center.

:convenience_store: Marketing

Unchanged since February 18

10 Likes
127

Hi! We’ve just launched 7-day free trials in addition to our 30-day money-back guarantee.

Where to get your free trial:

  • nym.com checkout (card payments only)

  • App Store

  • Google Play

You can try NymVPN risk-free, and cancel anytime during the trial period.

4 Likes
128

I just wanted to say that I have signed up for a 2 year plan with Nym and did so using Monero while they were having one of their sales. I must say that I’m satisfied so far with the vpn they provide. It’s pretty fast if you’re using the double-hop and stays connected with no problems. It also has plenty of servers to choose from. The only issue I had was when I upgraded my distro, the app stopped updating for some reason, and that just required me to uninstall & re-install, which wasn’t really a big deal and wasn’t the fault of Nym. If you need help with something, one place you can get that help is on Matrix, which is what I did using the Element app and that worked out great.

If you haven’t tried this VPN, I recommend doing so. It’s worth it imo. Hopefully Nym will be around for years to come.

4 Likes
129

Thanks @No_Name! We’ve been quite busy over the past few weeks. Here’s what’s new in NymVPN. Hope you enjoy these new features.

Power users features:

  • Split tunneling on Android (desktop coming Q1 2025)
  • SOCKS5/RPC proxy on Linux / Windows - Direct proxy support for apps and crypto wallets (hello former NymConnect users! :waving_hand:) (macOS coming)

Better server selection:

  • Revamped “Server details” screen with more info
  • City/region/country now visible for all servers
  • US state-based selection
  • Residential IP indicators - now clearly labeled

Under the hood:

  • Auto key rotation in VPN mode for enhanced security
  • Toggle for LAN bypass on iOS/macOS (Linux/Windows coming soon)

Easier payments:

  • Free trials for cards or app stores users
  • In-app purchases on Android (Google Play)
  • Ethereum and BNB now accepted on nym.com
  • Also 4 new languages added to the website

Community developments:

  • An OpenWRT version is in progress

Keep the questions and feedback coming :folded_hands:

2 Likes
130

Does Nym use Wireguard for both fast mode and anonymous mode?

Since Wireguard protocols store my real ip address on the server, does this mean my real ip address is stored on NymVPN’s first hop server in both fast and anonymous modes? If so, for how long? For comparison, Mullvad’s Wireguard protocol stores a user’s real ip only in RAM and only for 10 minutes before it is flushed out? How does Nym compare?

131

2026?

132

they have a roadmap if you’re curious

133

NYM VPN’s COO Alexis Roussel Interview by The Hated One.

5 Likes
134

This isn’t unique to Wireguard and applies to every connection protocol. A VPN server stores connections for TCP termination, buffers, NAT in netfilter kernel stack. Not to mention the service daemon itself needing to authenticate and track users.

135

Just out of curiosity, why do you call it the “Hated One Interview”?

Also, I started using NymVPN a few months ago and am loving it for the most part. Seems to work great!

1 Like
136

Mistake lol fixed now.

137

Also, to add to the question from @dramsay1 no, the anonymous mode does not use Wireguard protocol. It uses a Sphinx packet format to onion-encrypt the routed packets. You can read about the Anonymous Mode here: What Is Anonymous Mode in NymVPN? | Nym

1 Like
138

Hi Everyone! Last week, we announced our roadmap for 2026 Nym’s roadmap for 2026 | Nym :flexed_biceps:

For those testing NymVPN, please continue to share your feedback! :folded_hands:

11 Likes
139

I checked it myself (on my own initiative) → Vulnerability detected: Creating new accounts using the same card when paying with Google Pay.

This can be exploited in multiple ways:

1. Giving away accounts.

2. Reselling.

3. Abusing the service.

4. …

Fix this bug as soon as possible.

If it isn’t fixed, then something suspicious might be noticed.

The decision is yours.

140

I don’t really even understand what you’re saying the problem is

141

Let me explain it this way: On Nym’s official website, there was a 7-day free trial available when I signed up; I selected a 2-year plan and paid with Google Pay.

This process can be repeated over and over again using the same payment method without having to switch cards, allowing you to have multiple free accounts at no cost.

This way, the system can be exploited in one way or another. Currently, I don’t know if this still works or not.