Can the FBI see through VPNs?

When people ask if the FBI can 'see through' a VPN, they usually mean: can they break the encryption and read the traffic? The answer is no — modern VPN protocols (WireGuard, OpenVPN with current ciphers) are not breakable by any government agency we know of.

But that's not how investigations work. The FBI doesn't need to decrypt the traffic. They issue subpoenas to the VPN provider for the records the provider already keeps, and they subpoena the ISP to show that you connected to the VPN's server IP. Encryption stops content interception; it does not stop legal process.

A VPN's privacy is upper-bounded by where its corporate entity is incorporated. US-based providers operate under regimes that can compel disclosure. Five Eyes member countries (US, UK, Canada, Australia, NZ) cooperate on intelligence requests. 14 Eyes (broader alliance including Germany, France, the Netherlands) is somewhat better. Outside both — Switzerland, Panama, BVI, Romania, Iceland — is best.

When Swedish police raided Mullvad's office in 2023 with a warrant, they had nothing to hand over. That's not theory; that's evidence that a no-logs architecture in a privacy-friendly jurisdiction holds up under pressure.

Your ISP can see that you have an active connection to a VPN server's IP. Your payment trail (credit card, PayPal) ties you to the VPN account. Any account you log into over the VPN — Gmail, Facebook, your bank — knows it's you. Browser fingerprinting works regardless of IP.

If the threat model is 'the FBI is specifically investigating me', a consumer VPN is one layer of many — Tor, separate identities, cash payments, and operational discipline matter more.