|Join Nairaland / LOGIN! / Trending / Recent / New|
Stats: 2,799,312 members, 6,689,641 topics. Date: Monday, 24 January 2022 at 11:35 AM
|Delete This VPN Now, Users Are Warned!!! by PericomaNwankwo: 7:43am On Apr 10, 2020|
Google removes offending VPN from its app store, but users remain at risk
Google has removed a popular Android VPN from the Play Store after vulnerabilities were discovered in the service that could allow hackers to redirect users to malicious servers.
SuperVPN - the offending service - has more than 100 million installs and featured among the top five VPN search results in Google’s app store before it was withdrawn.
The VPN contains vulnerabilities that open the door to man-in-the-middle (MITM) attacks, which can expose messages sent between the user and provider and - most critically - redirect users away from bonafide VPN servers.
Rigorous testing also revealed the app allows sensitive data to be delivered over insecure HTTP. While the information passed between the user and the backend is encrypted, the decryption keys are stored within the app itself, making them an easy target for hackers.
SuperVPN privacy concerns
SuperVPN has drawn criticism on multiple occasions over its suspicious practices, and the precise origin of the application remains unclear.
Its publisher SuperSoftTech is listed as Singapore-based, but an investigation into the app’s lineage reveals it is owned by Jinrong Zheng, an independent developer likely based in Beijing.
Zheng is also responsible for LinkVPN - which is ostensibly based in Hong Kong - and is connected with Shenyang Yiyuansu Network Technology, the app developer listed against SuperVPN on the Apple App Store.
SuperVPN was first identified as a security threat in 2016, when Australian researchers ranked it third in an analysis of the most malware-rigged VPN apps, suggesting the app has posed risks since it arrived on Google Play Store. At this point in time, it had been installed only 10,000 times.
The app’s user base has doubled from 50 to 100 million since January, in line with the significant uptick in worldwide VPN usage prompted by the ongoing pandemic, placing vast numbers of users at risk.
The surge in installs can also be attributed in part to manipulation of Google Play Store search rankings. The publisher reportedly flooded its page with a high volume of fake reviews from hidden users and generated illegitimate backlinks to secure an optimal position in the rankings.
The millions of SuperVPN users are advised to delete the application immediately.
|Re: Delete This VPN Now, Users Are Warned!!! by Tobinrobin(m): 8:01am On Apr 10, 2020|
You can move to windscribe or Zenmate. They’re both reliable and free for some couple days or a week. Depends on your usage
|Re: Delete This VPN Now, Users Are Warned!!! by PericomaNwankwo: 8:14am On Apr 10, 2020|
It's fine, I'm okay with my AirVPN. Eddie is good to go.
|Re: Delete This VPN Now, Users Are Warned!!! by codekobo: 3:58pm On Apr 28, 2020|
|Sections: politics (1) business autos (1) jobs (1) career education (1) romance computers phones travel sports fashion health |
religion celebs tv-movies music-radio literature webmasters programming techmarket
Nairaland - Copyright © 2005 - 2022 Oluwaseun Osewa. All rights reserved. See How To Advertise. 38