In a landscape where online threats are becoming increasingly sophisticated, the need for comprehensive cybersecurity solutions is paramount. NordVPN has risen to the occasion, demonstrating the effectiveness of its next-generation antivirus in the latest 2026 Anti-Phishing Comparative Test conducted by AV-Comparatives. This independent evaluation revealed that NordVPN’s antivirus successfully blocked an impressive 96% of phishing sites, marking a notable improvement of 6% from its previous performance in May 2025.
Putting the antivirus to the test
To rigorously assess the capabilities of NordVPN’s antivirus, AV-Comparatives conducted testing from May 11 to May 22, 2026. The evaluators presented the software with 275 active phishing URLs, specifically designed to target personal data across various platforms, including PayPal, online banking, email services, and social media networks. Domininkas Virbickas, product director at NordVPN, emphasized the importance of such results, stating, “Phishing sites today are sophisticated enough to fool almost anyone, and most people shouldn’t have to become cybersecurity experts just to stay safe online. Results like these are exactly the kind of protection that makes a real difference in people’s daily lives.”
This achievement is not NordVPN’s first accolade from AV-Comparatives. In June 2024, the company became the first VPN service provider to receive the AV-Comparatives anti-phishing protection badge, a certification that requires software to detect and block at least 85% of phishing URLs without generating false alarms on legitimate banking sites.
How to recognize phishing websites
While the advanced antivirus provided by NordVPN Complete offers robust protection, users are encouraged to maintain good digital hygiene as cyber threats continue to evolve. Alongside utilizing reliable cybersecurity software, NordVPN suggests following these essential tips to avoid falling victim to phishing attempts:
- Verify the URL: Always inspect your browser’s address bar for subtle variations in domain names, suspicious prefixes, or unexpected redirects to subpages instead of homepages.
- Read the text carefully: If an unsolicited email or message urges immediate action or induces panic, take a moment to scrutinize it for typos or inconsistencies.
- Enable two-factor authentication (2FA): Implementing a second layer of security, such as a one-time code sent to your phone, ensures that even if a hacker acquires your password, they cannot access your account.
- Check the website’s protocol: Confirm that the site uses a secure HTTPS connection. Look for the padlock icon in the address bar; fraudulent URLs often utilize unsecured HTTP protocols.
