Huge Security Flaw Leaks VPN Users’ Real IP-Addresses !

Forums General General Discussion Windows Security Huge Security Flaw Leaks VPN Users’ Real IP-Addresses !

Viewing 0 reply threads
  • Author
    • #44913

        “VPN users are facing a massive security flaw as websites can easily see their home IP-addresses through WebRTC.
        The vulnerability is limited to supporting browsers such as Firefox and Chrome,
        and appears to affect Windows and FreeBSD users only.
        Luckily the security hole is relatively easy to fix.

        The Snowden revelations have made it clear that online privacy is certainly not a given.
        Just a few days ago we learned that the Canadian Government tracked visitors of dozens of popular file-sharing sites.
        As these stories make headlines around the world interest in anonymity services such as VPNs has increased,
        as even regular Internet users don’t like the idea of being spied on.

        Unfortunately, even the best VPN services can’t guarantee to be 100% secure.
        This week a very concerning security flaw revealed that it’s easy to see the real IP-addresses of many VPN users,
        through a WebRTC feature.

        With a few lines of code websites can make requests to STUN servers and log users’ VPN IP-address,
        and the “hidden” home IP-address, as well as local network addresses.
        The vulnerability affects WebRTC-supporting browsers including Firefox and Chrome,
        and appears to be limited to Windows machines and FreeBSD.

        Full story:

        Note: The original text above edited by me (added FreeBSD).

        Pale Moon does not have WebRTC, so it is not affected by this bug.
        Yet another good reason to use Pale Moon instead of Firefox… 😉

    Viewing 0 reply threads
    • You must be logged in to reply to this topic.