NordVPN Had Private Keys Stolen after Server Breach (Updated)

NordVPN has confirmed that one of its servers was compromised in a hack early last year. The attacker gained access to a TLS encryption key which could be used to impersonate the NordVPN.com site or a VPN server, using a targeted man-in-the-middle attack. The key could not be used to decrypt regular VPN traffic.