this post was submitted on 27 Mar 2026
116 points (100.0% liked)

Privacy

47510 readers
697 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 6 years ago
MODERATORS
k_o_t@lemmy.ml
tmpod@lemmy.pt
Yayannick@lemmy.ml
ranok@sopuli.xyz
116
Using a VPN May Subject You to NSA Spying (www.wired.com)
submitted 1 day ago by zdhzm2pgp@lemmy.ml to c/privacy@lemmy.ml
29 comments fedilink hide all child comments
 

Lemmings, what are your opinions on the following?:

Mar 26, 2026 9:32 AM

Using a VPN May Subject You to NSA Spying

US lawmakers are pressing Tulsi Gabbard to reveal whether using a VPN can strip Americans of their constitutional protections against warrantless surveillance

Six Democratic lawmakers are pressing the nation's top intelligence official to publicly disclose whether Americans who use commercial VPN services risk being treated as foreigners under United States surveillance law—a classification that would strip them of constitutional protections against warrantless government spying.

In a letter sent Thursday to Director of National Intelligence Tulsi Gabbard, the lawmakers say that because VPNs obscure a user's true location, and because intelligence agencies presume that communications of unknown origin are foreign, Americans may be inadvertently waiving the privacy protections they're entitled to under the law.

Several federal agencies, including the FBI, the National Security Agency, and the Federal Trade Commission, have recommended that consumers use VPNs to protect their privacy. But following that advice may inadvertently cost Americans the very protections they're seeking.

The letter was signed by members of the Democratic Party’s progressive flank: Senators Ron Wyden, Elizabeth Warren, Edward Markey, and Alex Padilla, along with Representatives Pramila Jayapal and Sara Jacobs.

The concern centers on how intelligence agencies treat internet traffic routed through commercial VPN servers, which may be located anywhere in the world. Millions of Americans use these services routinely, whether to access region-restricted content like overseas sports broadcasts or to protect their privacy on public Wi-Fi networks. Because VPN servers commingle traffic from users in many countries, a single server—even one located in the United States—may carry communications from foreigners, potentially making it a target for surveillance under authorities that allow the government to secretly compel service from US service providers.

Under a controversial warrantless surveillance program, the US government intercepts vast quantities of electronic communications belonging to people overseas. The program also sweeps in enormous volumes of private messages belonging to Americans, which the FBI may search without a warrant, even though it is authorized to target only foreigners abroad.

The program, authorized under Section 702 of the Foreign Intelligence Surveillance Act, is set to expire next month and has become the subject of a fierce battle in Congress over whether it should be renewed without significant reforms to protect Americans' privacy.

Thursday’s letter points to declassified intelligence community guidelines that establish a default presumption at the heart of the lawmakers' concern: Under the NSA's targeting procedures, a person whose location is unknown is presumed to be a non-US person unless there is specific information to the contrary. Department of Defense procedures governing signals intelligence activities contain the same presumption.

Commercial VPN services work by routing a user's internet traffic through servers operated by the VPN company, which may be located anywhere in the world. A single server may carry traffic from thousands of users simultaneously, all of it appearing to originate from the same IP address. To an intelligence agency collecting communications in bulk, an American connected to a VPN server in, say, Amsterdam looks no different from a Dutch citizen.

The letter does not assert that Americans' VPN traffic has been collected under these authorities—that information would be classified—but asks Gabbard to publicly clarify what impact, if any, VPN use has on Americans' privacy rights.

Among those pressing the question is Wyden, who as a member of the Senate Intelligence Committee, has access to classified details about how these surveillance programs operate and has a well-documented history of using carefully worded public statements to draw attention to surveillance practices he is unable to discuss openly.

The letter also raises concerns about a second, broader surveillance authority: Executive Order 12333, a Reagan-era directive that governs much of the intelligence community's foreign surveillance operations and permits the bulk collection of foreigners' communications with even fewer constraints than Section 702.

While 702 is a statute with congressional oversight that requires approval from the Foreign Intelligence Surveillance Court, EO 12333 surveillance operates under guidelines approved by the US attorney general alone.

The letter warns that the same foreignness presumption applies under both authorities, meaning Americans on foreign VPN servers could be exposed not just to targeted collection under 702 but to what the lawmakers describe as “bulk, indiscriminate surveillance of foreigners' communications.”

Americans spend billions of dollars each year on commercial VPN services, many offered by foreign-headquartered companies that route traffic through servers located overseas. The letter notes that these services are widely advertised as privacy tools, including by elements of the US government itself.

Despite the scale of the market, the letter suggests consumers have been given no meaningful guidance on how to protect themselves.

The lawmakers urge Gabbard to “clarify what, if anything, American consumers can do to ensure they receive the privacy protections they are entitled to under the law and the US Constitution.”

Updated at 12:38 pm ET, March 26, 2026: This story has been updated with additional details to clarify the scope of the potential surveillance addressed in the letter.

top 29 comments
sorted by: hot top controversial new old
[–] AnnaFrankfurter@lemmy.ml 1 points 2 hours ago

But if you don't use VPN and are a US citizen don't feel bad GCHQ and Pine gap will spy on you and then report to NSA.

[–] quick_snail@feddit.nl 1 points 6 hours ago (1 children)

Guess I'll use Tor

[–] umbrella@lemmy.ml 7 points 5 hours ago

ever notice how tor nodes nowadays are always in five eyes countries?

[–] TiredTiger@lemmy.ml 7 points 14 hours ago (1 children)

This is just FUD to herd people into areas where they're easier to track. Do they really think we've forgotten about Snowden? I also highly doubt any of these elected officials give a damn about privacy.

[–] ThisIsABlandUsername@lemmy.ml 5 points 9 hours ago* (last edited 9 hours ago)

They don't care if we remember Snowden because the collective response to the Snowden leaks was a week-long news cycle and a collective shoulder shrug from society.

Your average person only cares about their privacy and security to the point it clashes with their convenience. They will happily trade their security to make their life a little easier, even if in the long run it cost them way more money.

They will let us small fry think we have the illusion of privacy with our vpns, anti-fingerprint browsers and de-googled phones but the reality is, we're trapped by the whims of a society that LOVES being told what to do so they don't have to think for themselves.

[–] Abrinoxus@lemmy.today 7 points 15 hours ago

This is so fuckin stupid

[–] endless_nameless@lemmy.world 36 points 23 hours ago (3 children)

My opinion is that I hate the government so fucking much it's unreal. I wish I was Satan so I could devise a new circle of Hell for backers of mass surveillance and personally oversee their eternal torment.

[–] gary_host_laptop@lemmy.ml 14 points 22 hours ago (1 children)

you dont hate the government, you hate the bourgeoisie

[–] skyline2@lemmy.dbzer0.com 13 points 22 hours ago

Exactly. At the federal level the U.S. is an oligarchy completely controlled by the Epstein class.

[–] FineCoatMummy@sh.itjust.works 4 points 17 hours ago

new circle of Hell for backers of mass surveillance

A perpetual itch between the thumb toe and the next one, and they must wear shoes 18 hours each day so they can't reach the itch.

[–] eldavi@lemmy.ml 4 points 19 hours ago

same and watching people espouse this view, but then go back to unwittingly doing what the gov't wants them to do adds an extra layer that i don't know how to describe.

[–] Grass@sh.itjust.works 5 points 16 hours ago

If you don't let us spy on you we will take away your privacy

[–] thanksforallthefish@literature.cafe 49 points 1 day ago* (last edited 1 day ago) (3 children)

Using a VPN may subject you to NSA spying.

NOT using a VPN WILL subject you to NSA spying.

Might as well make their job harder.

Edit to add

Everyone on the internet in any country should assume their local spy squad is spying on them plus the Americans & the Chinese. You'll rarely be wrong anywhere in the world, and they have a lot of backdoors via network hardware (among other ways).

You can potentially have privacy from the FAANGS if you are careful. TLAs not so much.

[–] MrTastySaganaki@piefed.social 3 points 13 hours ago (1 children)

Thank you for this framing! As a plebe who isn’t a tech or privacy expert, but just wants a modicum of privacy, I got spooked reading this Wired story.

Question: what are FAANGS and TLAs?

[–] thanksforallthefish@literature.cafe 4 points 12 hours ago (2 children)

FAANGs = Facebook, Amazon, Apple, NVidia, Google - ie the big tech companies - technically it's kinda out of date because Nvidia isn't doing much (any ?) creepy shit whereas Palantir are the worst. However the acronym was actually an investing one as short hand for high capital gain tech stocks

TLAs are "Three Letter Acronyms" - a short hand way of referring to the govt dept's who tend to use TLAs - CIA, FBI, NSA, MI6, MI5, BND, etc.

Technically a lot of them are FLA (four letter acronyms) CIA equivalents are CSIS for Canada - ASIO for Australia, DGSE for France and GCHQ is the UK equivalent to NSA for example

[–] N0x0n@lemmy.ml 1 points 3 hours ago

I though the acronym was GAFAM ? Google Amazon Facebook Apple Microsoft ? Faang has some deeper meaning but misses Microsoft in it ^^

[–] MrTastySaganaki@piefed.social 2 points 10 hours ago

Thank you!

[–] cenzorrll@piefed.ca 5 points 18 hours ago

Basically, they're already spying without a warrant. This just allows them to use it as a primary source instead of making up bullshit to say they found evidence a different way.

[–] NutWrench@lemmy.ml 10 points 22 hours ago (1 children)

Yup. Also, using Windows will subject you to corporate spying as well, since the spyware is built right in to the operating system. I'm really glad I switched to linux.

[–] comrade_twisty@feddit.org 7 points 21 hours ago

Using Cloudflare DNS or Google DNS will subject you to NSA surveillance

[–] Zerush@lemmy.ml 15 points 1 day ago* (last edited 1 day ago) (1 children)

The open web is more and more an data market of big corps, I see the future more in a decentralized web, I2P or similar.

[–] Auli@lemmy.ca 2 points 21 hours ago (1 children)

Hahaha yah right it well be more centralized. We had a decentralized web and we let it get consolidated. And it just gets more and more. I do not see it ever going back people are to lazy.

[–] Zerush@lemmy.ml 1 points 9 hours ago

90%bof the current web is controlled directly or indirectly by Google, M$, FB, Amazon, even OpenSource. It's a shopping mall with surveillance by gov agents and AIs in every corner, not so far from Minority Report, not a model for the future if you want some integrity and sovereignty. It's currently almost irrelevant if you use a VPN, TOR or whatever. they identify you in seconds if they want, more if you are browsing with mobile, knowing in every moment exactly where you are, well by GPS or triangulation.

[–] SpontaneousCombustion@lemmy.world 36 points 1 day ago

Then everyone should be using a VPN.

[–] foofighter@lemmy.world 9 points 1 day ago

Six Democratic lawmakers are pressing the nation’s top intelligence official to publicly disclose whether Americans who use commercial VPN services risk being treated as foreigners under United States surveillance law—a classification that would strip them of constitutional protections against warrantless government spying.

As if Snowden didn't already prove constitutional protections don't matter to the glowies anyway. Also, don't expect privacy by placing your trust in strangers. Use trustless systems for that.

[–] eleitl@lemmy.zip 13 points 1 day ago

Using the Internet makes you subject to TLA spying.

[–] zdhzm2pgp@lemmy.ml 9 points 1 day ago (2 children)

For better or worse, Trump is in the process of destroying the federal govt. Isn't he also then kind of degrading its ability to spy on its own citizens?

[–] Flying_Penguin@lemmy.zip 22 points 1 day ago

The spying will just be more in your face if anything.

[–] CameronDev@programming.dev 18 points 1 day ago

He isn't destroying the entire federal gov, just the bits that are of no value to him. Very important distinction.