Is VPN for Chrome: NordVPN proxy protection safe to use?

VPN for Chrome: NordVPN proxy protection has a risk level of CRITICAL with an overall risk score of 9.5/10. Our scan detected 82 security findings. This extension has significant security concerns — review the full report before installing.

What permissions does VPN for Chrome: NordVPN proxy protection request?

VPN for Chrome: NordVPN proxy protection requests the following permissions: alarms, scripting, proxy, webRequest, webNavigation, privacy, storage, notifications, tabs, contextMenus, activeTab, unlimitedStorage, downloads, declarativeNetRequestWithHostAccess, webRequestAuthProvider, offscreen. It also requests host access to: .

What is VPN for Chrome: NordVPN proxy protection's risk score?

VPN for Chrome: NordVPN proxy protection has an overall risk score of 9.5/10 (CRITICAL). Breakdown: Permissions 10.0/10, Code 10.0/10, Combinations 10.0/10, CSP 5.0/10.

ExtSafe

VPN for Chrome: NordVPN proxy protectionSecurity Analysis

Chromev5.3.1MV3February 16, 2026 at 03:26 PM

9.5CRITICAL

9.5 CRITICAL

This extension shows critical risk indicators. It requests highly sensitive permissions combined with suspicious code patterns. Proceed with extreme caution.

Based on 17 permissions including high-risk ones, 73 code findings, 3 dangerous combinations.

Dangerous Combinations(3)

HIGHTab tracking + external communication

Extension tracks open tabs and communicates with external servers — potential browsing surveillance.

tabs+external network request

CRITICALNetwork interception + external communication

Extension intercepts network traffic and sends data externally — potential man-in-the-middle behavior.

webRequest/webRequestBlocking+external network request

CRITICALAll-sites access + keyboard capture

Extension has access to all sites and captures keyboard input — behavior consistent with a keylogger.

<all_urls>+keylogger_pattern

Permissions

10.0/10

Code

10.0/10

Combinations

10.0/10

Manifest/CSP

5.0/10

Permissions(17 analyzed)

Code Findings(16 patterns, 73 total)

Libraries(2 detected)

2 libraries detected

Content Security Policy

CSP Present(1 issue)

LOW

object-srcobject-src not restricted

object-src is not set to 'none'. Plugins like Flash can be embedded, which may allow code execution.

Manifest Analysis(2 findings)

MEDIUM

web_accessible_resources.matchesOverly broad match patterns

Web-accessible resources use <all_urls> or wildcard patterns, exposing resources to every website.

MEDIUM

content_scriptsContent script injected on all URLs

Content script matches <all_urls>, executing on every website the user visits.

External Domains(41)

${e${f.qq${pa${this.getapihost(${this.getcdnhost(${this.value.applyticshostaccounts-static.cdn.mozilla.netaccounts.firefox.comaddons.cdn.mozilla.netaddons.mozilla.orgapi.accounts.firefox.combit.lychromewebstore.google.comclients.google.comcontent.cdn.mozilla.netdatatracker.ietf.orgdebug.nordvpn.comdiscovery.addons.mozilla.orgdocs.sentry.ioen.wikipedia.orgfb.meformatjs.iogit.iogithub.cominstall.mozilla.orglocalhostmicrosoftedge.microsoft.commy.nordaccount.comnordvpn.comnordvpn.zendesk.comnpms.iontp.msn.comoauth.accounts.firefox.comprofile.accounts.firefox.comreactjs.orgredux-toolkit.js.orgredux.js.orgsb-ssl.google.comsupport.mozilla.orgsync.services.mozilla.comwww.example.com