NordVPN has been told to stop misleading world+dog with claims in telly ads that public Wi-Fi is inherently insecure.

Britons will be familiar with NordVPN's recent ad spot, which featured some credulous loon in a railway carriage handing out his credit card, phone, passwords and so on to random strangers.

The Advertising Standards Authority, a private company based in central London that is funded by a levy on the advertising industry, has now told NordVPN not to repeat the advert's claims that public Wi-Fi is so insecure that it amounts to handing out your personal details to everyone around you.

Nine people complained about the advert, which was broadcast in the first quarter of this year.

There's NordVPN odd about this, right? Infosec types concerned over strange app traffic READ MORE

Justifying its claims, NordVPN told the ASA that HTTPS encryption of webpages "did not mean the site was legitimate, nor was it any proof that the site had been security-hardened against intrusion from hackers". It added that "most public Wi-Fi hotspots were considered insecure since the majority had very primitive security parameters and non-existent or very weak passwords available to everyone."

Disagreeing, the ASA acknowledged in a public ruling that while "such data threats could exist", it "considered the overwhelming impression created by the ad was that public networks were inherently insecure and that access to them was akin to handing out security information voluntarily."

"Because the ad created the impression that users were at significant risk from data theft, when that was not the case, we concluded it was misleading" concluded adland's gummy mouthed self-regulator.

The ruling comes not long after Reg readers got in touch after noticing NordVPN's app generating some strange traffic to unregistered web domains.

Earlier this month, UK ISP Cityfibre lost a judicial review it brought against the ASA over how fibre broadband is advertised by its commercial rivals. ®