Exit IP Fingerprinting vulnerability found | Patch rollout in progress
A security researcher found a vulnerability in the way Mullvad servers assign exit IP addresses to user devices, allowing websites to fingerprint the same user accessing them through different servers. Changing servers has been rendered useless for unlinkability purposes. Mullvad has acknowledged the vulnerability in a blog post and is currently patching its servers to mitigate the issue. Here is a list of the servers that have been patched.
Full penalty applies until resolved.
Best VPN on the market. I trust mullvad 100%.