Techly NewsGet the app

Get the latest tech news

Novel attack against virtually all VPN apps neuters their entire purpose


TunnelVision vulnerability has existed since 2002 and may already be known to attackers.

Researchers have devised an attack against nearly all virtual private network applications that forces them to send and receive some or all traffic outside of the encrypted tunnel designed to protect it from snooping or tampering. TunnelVision, as the researchers have named their attack, largely negates the entire purpose and selling point of VPNs, which is to encapsulate incoming and outgoing Internet traffic in an encrypted tunnel and to cloak the user’s IP address. A setting known as option 121 allows the DHCP server to override default routing rules that send VPN traffic through a local IP address that initiates the encrypted tunnel.

Get the Android app

Or read this on r/technology

Read more on:

Photo of novel attack

novel attack

Photo of VPN apps

VPN apps

Photo of entire purpose

entire purpose

Related news:

News photo

Sandworm Disrupts Power in Ukraine Using a Novel Attack Against Operational Technology

« What’s at Stake in Google Trial on Antitrust Charges
Gemini could pick up a YouTube Music extension for mood-based song suggestions »