VPN: myths and facts. Does it really protect you?
Ads promise a VPN gives anonymity and total security. We explain what a VPN really does, what it doesn't protect against and when it's worth using.
It’s hard to watch a video online today without a VPN ad promising “total anonymity”, “protection from hackers” and “security online”. Those promises are wildly overstated — and yet a VPN can be a genuinely useful tool, just for different things than the ads suggest. So let’s separate myths from facts: what a VPN really does, what it won’t protect you from and when it’s worth using.
What a VPN really does
A VPN (Virtual Private Network) creates an encrypted “tunnel” between your device and the VPN provider’s server. In practice that means two things:
- Your traffic is encrypted between you and the VPN server — nobody “in between” (e.g. on public Wi-Fi or at your internet provider) sees what exactly you’re doing.
- Your real IP address is hidden from the sites you visit — they see the VPN server’s address, not yours.
That’s it. A VPN reroutes and encrypts traffic — it’s not a magic shield against everything.
Myths not worth believing
Myth: “A VPN gives total anonymity.” No. A VPN hides your IP from sites, but it doesn’t make you anonymous. You still log into accounts (Google, Facebook know who you are), the browser identifies you via cookies and fingerprinting, and the VPN provider itself sees your traffic. You trade trust in your internet provider for trust in your VPN provider.
Myth: “A VPN protects against hackers and viruses.” No. A VPN doesn’t block malware and doesn’t protect against phishing or infostealers. If you download an infected file or enter a password on a fake page, a VPN won’t help — because the problem isn’t in the network layer.
Myth: “With a VPN I’m safe on public Wi-Fi.” Partly. A VPN does protect your traffic on an open network from eavesdropping. But modern sites use encryption (HTTPS) anyway, so the real benefit is smaller than it used to be. A VPN helps, but it isn’t the only reason to be careful on public networks.
Myth: “A free VPN is just as good.” Usually not. Free providers have to make money somehow — often on your data (selling traffic information, injecting ads). Since the whole idea of a VPN rests on trust in the provider, a free VPN with an unclear business model can be worse than none.
When a VPN really helps
A VPN is valuable in a few specific situations:
- Remote work with access to company resources — a corporate VPN is the standard for secure access to internal systems (we cover this in secure remote work).
- Untrusted networks — a hotel, airport, café: a VPN adds a layer of traffic protection.
- Privacy from your internet provider — if you don’t want your ISP to see which sites you visit.
- Bypassing regional blocks — access to content unavailable in your region (though this depends on services’ terms).
If you choose a commercial VPN, pick a provider with a clear “no-logs” policy (ideally audited), a transparent business model and a good reputation.
What a VPN won’t replace
A VPN is one tool, not complete protection. You still need: strong, unique passwords and a password manager, MFA on key accounts, OS updates, vigilance against phishing and EDR/antivirus. A VPN protects the network layer — and most real attacks target you (social engineering) or your device (malware), not your connection.
Frequently asked questions (FAQ)
Does a VPN hide me from Google and Facebook? Not if you’re logged in. A VPN changes your IP address, but when you log into an account, the service knows who you are anyway. On top of that, the browser identifies you via cookies and fingerprinting. A VPN is a tool for hiding your IP and encrypting traffic, not for vanishing from the internet.
Do I need a VPN at home? For most people it’s not necessary — at home your traffic is encrypted by HTTPS anyway. A VPN at home mainly makes sense if you don’t want your internet provider to see your activity or you need to change region. On untrusted networks (away from home) a VPN is more useful.
Does a VPN slow down the internet? Usually slightly — traffic passes through an extra server, adding latency. Good providers minimise this to the point where the difference is barely noticeable in everyday use. Free VPNs can slow things down much more.
Is a free VPN safe? Treat it cautiously. Since the VPN model rests on trust in the provider, a free service with unclear funding may make money on your data. A reputable, paid provider with an audited no-logs policy is better — or no VPN and relying on HTTPS.
I run a company — which VPN should I choose for the team? Corporate remote access is different from a consumer VPN. It’s worth considering modern ZTNA models (per-application access) instead of a classic VPN granting access to the whole network, with mandatory MFA and priority gateway patching. We’ll help choose and test a solution. Get in touch.
Summary
A VPN is a useful tool for encrypting traffic and hiding your IP — but it doesn’t give anonymity or protection from malware, phishing or weak passwords, contrary to what the ads promise. Use it deliberately: on untrusted networks, for corporate remote access and for privacy from your internet provider — choosing a trusted provider. And remember that a VPN is one piece of the puzzle, not a replacement for basic security hygiene.