Obscura VPN

ignoramous · December 31, 2025, 10:39pm

The only “PII” that’s hidden away from Mullvad is the client IP?^[1] If not, what else?

In fact, Obscura is able to leverage (?) Mullvad’s existing design for WireGuard multi-hop^[2] as-is precisely because Mullvad categorically knows who the client is (across all sessions), even if it can’t see the IP. I did point this out before; but I’m also not sure if Cure53 cleared any such concern in its audit of Obscura’s two-party protocol: Mullvad has partnered with Obscura VPN - #216 by ignoramous

Mullvad accepts payments without needing KYC, already; so, the two-party system here is only shiting merchant of record from one entity based in Sweden to another based in the US, which has
worser consumer protection laws per this analysis. ↩︎
Where only the “Peer Endpoint” is changed to point to the desired entry location, while the “Peer Identity”, is exit location’s public key. ↩︎

Topic		Replies	Views
Mullvad has partnered with Obscura VPN General article	221	13343	January 22, 2026
Obscura’s First Independent Audit by Cure53 Project Showcase article	8	723	January 8, 2026
Should I use the native VPN client that the VPN provider offers or a Wireguard config? Questions	3	762	May 20, 2025
Remove OpenVPN requirement Site Development completed	8	574	March 5, 2025
Mullvad VPN or Proton VPN? General software	44	12408	February 27, 2024

Obscura VPN

Related topics