Oh the irony! Popular VPN is compromised

Oh the irony! Popular VPN is compromised

Over 100 million people who use the free SuperVPN software that is available via the Google Play store have been told they should delete it immediately.

VPNs (virtual private networks) can be used to help mobile phone users navigate the web securely, even when they are using a free mobile connection that isn’t password protected.

However new research from the team at VPNpro.com suggests that one of the popular VPNs, SuperVPN, could be putting Android users at serious risk of a cyber breach, such as having their credit card details stolen when they shop online.

Apparently the free app has a number of vulnerabilities that leaves it open to “man-in-the-middle” (MITM) attacks where hackers intercept data passing from your phone (passwords, credit card details etc) to the internet.

Of course, ironically this is exactly the sort of thing that VPNs are supposed to prevent.

Google Play is a platform for millions of people and software developers, and this makes it an attractive target for cybercriminals. However many of the free apps in the Google Play Store are often free for a reason: some collect data maliciously and some are deliberately vulnerable (we are not suggesting this is true of SuperVPN) while others are simply flawed perhaps because their “free” or “freemium” business model means they can’t afford adequate development checks.

David Emm, Principal security Researcher at Kaspersky has the following advice: “It’s vital that people obtain security apps from a reputable source, i.e. one that they know and trust. Vendors of many Internet security products offer a VPN and some include it as part of an overall security solution. People would be wise to choose a solution from a trusted vendor, rather than an unknown app.”

There are many reputable VPN providers, some of who offer good free services. So you should ensure that, if you are on public wifi you are always using a VPN connection. But make sure the supplier you are using is safe and reputable.

Copyright Lyonsdown Limited 2021

Top Articles

RockYou2021 data leak: 8.4 billion passwords compromised

A report shows that 100GB of data which includes 8.4 billion passwords have been recently leaked on the internet, people are being encouraged to secure their accounts.

Hackers Breach Electronic Arts & Steal Game Code

Electronic Arts, one of the world's biggest video game publishers including games such as FIFA, Madden, Sims and Medal of Honor, are the latest company to be hacked.

JBS Foods paid £7.7m in ransom to REvil ransomware gang

JBS Foods, the world’s largest processor of beef and poultry products, has admitted to paying a ransom of $11 million to cyber criminals, a week after it announced that operations…

Related Articles

[s2Member-Login login_redirect=”https://www.teiss.co.uk” /]