VPN Users Are Advised To Delete Specific VPN From Android
VPN Users Are Advised To Delete This Specific VPN From Android Google deleted the offending VPN from its app store, but users remain at risk. Google has deleted an Android VPN from its Play Store after it was found to have vulnerabilities identified in the service that can allow hackers to redirect users to malicious servers. SuperVPN the offending service, holds more than 100 million installs and featured amongst the top five VPN search engine results in Google’s app store before it was removed. The VPN carries vulnerabilities that open the door to man-in-the-middle (MITM) attacks, it can expose information sent among the user and provider, and most critically directs users away from bonafide VPN servers. Testing also exposed the app allows sensitive data to be transferred over insecure HTTP. While the data passed between the user and the backend is encrypted, the decryption key codes are stored in the app itself, making them an easy target for hackers.
SuperVPN privacy concerns
SuperVPN has attracted criticism on many occasions over its suspicious practices, and the exact origin of the application remains unclear. Its publisher SuperSoftTech is listed as Singapore-based, but an inquiry into the app’s lineage shows it is owned by Jinrong Zheng, an independent developer likely to be based in Beijing. Read the full article