Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
ExpressVPN

ExpressVPN Vendor Cyber Rating & Cyber Score

expressvpn.com

The leading VPN company. Building a safer, better digital world.


ExpressVPN A.I CyberSecurity Scoring

ExpressVPN
Company Information
Website:https://www.expressvpn.com
Employees number:226
Number of followers:16,696
NAICS:541514
Industry Type:Computer and Network Security
Homepage:expressvpn.com
ExpressVPN Risk Score (AI oriented)
Between 750 and 799
logo
ExpressVPNComputer and Network Security
Updated:
02/04/2026
752/1000
Fair
Baa
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
ExpressVPN Global Score (TPRM)
xxxx
logo
ExpressVPNComputer and Network Security
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

ExpressVPN
ExpressVPNFair
Current Score
752Baa (FAIR)
01000
1 incidents
-1 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
753Before Incident
JUNE 2026
753Before Incident
MAY 2026
752Before Incident
APRIL 2026
752Before Incident
MARCH 2026
752Before Incident
FEBRUARY 2026
752Before Incident
JANUARY 2026
752Before Incident
DECEMBER 2025
752Before Incident
NOVEMBER 2025
752Before Incident
OCTOBER 2025
751Before Incident
SEPTEMBER 2025
751Before Incident
AUGUST 2025
751Before Incident
JULY 2025
752Before Incident
Vulnerability
22 Jul 2025ExpressVPN
ExpressVPN

ExpressVPN Windows App RDP Leak Vulnerability

751After Incident
LOW-1
EXP959072325
A critical security vulnerability in ExpressVPN Windows desktop application exposed users’ real IP addresses when using Remote Desktop Protocol (RDP) connections. The flaw, discovered through the company’s bug bounty program, affected specific versions of the Windows client and allowed TCP traffic over port 3389 to bypass the VPN tunnel. This potentially revealed users’ actual network locations to internet service providers and network observers. The vulnerability did not compromise the encryption of RDP sessions but created a significant privacy breach by allowing third parties to identify both the user’s connection to ExpressVPN and their access to specific remote servers. ExpressVPN patched the issue with version 12.101.0.45.
INCIDENT DETAILS -
TYPE
Vulnerability
IMPACT
Data Compromised: Real IP addressesSystems Affected: ExpressVPN Windows application versions 12.97 through 12.101.0.2-beta
DATA BREACH
Type Of Data Compromised: Real IP addresses

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for ExpressVPN ?
?
What was ExpressVPN's A.I Rankiteo Cyber Score in June 2026 ?
?
What was ExpressVPN's A.I Rankiteo Cyber Score in May 2026 ?
?
What was ExpressVPN's A.I Rankiteo Cyber Score in April 2026 ?
?
What was ExpressVPN's A.I Rankiteo Cyber Score in March 2026 ?
?
What was ExpressVPN's A.I Rankiteo Cyber Score in February 2026 ?
?
What was ExpressVPN's A.I Rankiteo Cyber Score in January 2026 ?
?
What was ExpressVPN's A.I Rankiteo Cyber Score in December 2025 ?
?
What was ExpressVPN's A.I Rankiteo Cyber Score in November 2025 ?
?
What was ExpressVPN's A.I Rankiteo Cyber Score in October 2025 ?
?
What was ExpressVPN's A.I Rankiteo Cyber Score in September 2025 ?
?
What was ExpressVPN's A.I Rankiteo Cyber Score in August 2025 ?
?
What is the average per-incident point impact on ExpressVPN's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with ExpressVPN ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view ExpressVPN's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?