Close to 20% VPN Providers Reported Leaking Customer IP Addresses via WebRTC Bug

Home

Topics

Access Providers Artificial Intelligence Blockchain Brand Protection Broadband Censorship Cloud Computing Cyberattack Cybercrime Cybersecurity Data Center DDoS Attack DNS DNS Security Domain Management Domain Names Email Enum Gaming ICANN Internet Governance Internet of Things Internet Protocol IPv4 Markets

IPTV IPv6 Transition Law Malware Mobile Internet Multilinguism Net Neutrality Networks New TLDs P2P Policy & Regulation Privacy Regional Registries Registry Services Satellite Internet Spam Telecom UDRP VoIP VPN Web White Space Whois Wireless

Display Options:

List by Popularity Chart by Popularity

Home / News

Close to 20% VPN Providers Reported Leaking Customer IP Addresses via WebRTC Bug

By CircleID Reporter
March 28, 2018, 6:32 pm PDT Views: 13,175 Add Comment

Close to 20% of popular VPN services are reported to be leaking customer’s IP address via a WebRTC bug known since January 2015, and which “some VPN providers have never heard of.” Catalin Cimpanu reporting in BleepingComputer: “The discovery belongs to Paolo Stagno, a security researcher who goes by the pseudonym of VoidSec, and who recently audited 83 VPN apps on this old WebRTC IP leak. Stagno says he found that 17 VPN clients were leaking the user’s IP address while surfing the web via a browser. ... Stagno’s code is based on the WebRTC bug discovered in January 2015 by security researcher Daniel Roesler.”

By CircleID Reporter — CircleID’s internal staff reporting on news tips and developing stories. Do you have information the professional Internet community should be aware of? Contact us.
Visit Page

Filed Under

Comments

The Weekly Wrap

More and more professionals are choosing to publish critical posts on CircleID from all corners of the Internet industry. If you find it hard to keep up daily, consider subscribing to our weekly digest. We will provide you a convenient summary report once a week sent directly to your inbox. It's a quick and easy read.

Related

Global Domain Activity Trends Seen in Q3 2024

WhoisXML API
Nov 15, 2024 10:29 AM PST
Views: 1,275

11 Information Economy Policy Reversals Coming to a Marketplace Near You!

Rob Frieden
Nov 12, 2024 4:16 PM PST
Views: 2,051

Biden Administration to Back UN Cybercrime Treaty Amid Controversy

CircleID Reporter
Nov 12, 2024 11:21 AM PST
Views: 2,073

A DNS Investigation into Mamba, the Latest AitM Phishing Player

WhoisXML API
Nov 08, 2024 1:17 PM PST
Views: 3,359

Enterprise Domain Stargazing: Understanding Your Company’s Galaxy of Domains

Sue Watts
Nov 08, 2024 11:10 AM PST
Views: 3,389

Project 2025: The Internet and Cybersecurity

Anthony Rutkowski
Nov 07, 2024 3:41 PM PST
Views: 4,074

A DNS Investigation of the 32 Doppelganger Websites Seized by the U.S. Government

WhoisXML API
Nov 05, 2024 9:57 AM PST
Views: 2,164

Investigating the Proliferation of Deepfake Scams

WhoisXML API
Nov 04, 2024 11:26 AM PST
Views: 1,617

How Dormant Domains Can Be Weaponized During Events Like the 2024 U.S. Election

Ihab Shraim
Nov 01, 2024 12:39 PM PDT
Views: 3,502

Five Years of Domain Security Insights: CSC’s Latest Findings on Global 2000 Companies

CSC
Nov 01, 2024 10:29 AM PDT
Views: 2,211

More

Topics

DNS

Sponsored byDNIB.com

Threat Intelligence

Sponsored byWhoisXML API

IPv4 Markets

Sponsored byIPv4.Global

Cybersecurity

Sponsored byVerisign

Brand Protection

Sponsored byCSC

New TLDs

Sponsored byRadix

Domain Names

Sponsored byVerisign

View All Topics

A World-Renowned Source for Internet Developments. Serving Since 2002.

FOLLOW

CIRCLEID: About | Contact Us
SECTIONS: Home | Topics | Featured Blogs | News Briefs | Industry Updates | Community
TERMS OF USE: Codes of Conduct | Privacy Policy | Terms of Use

Copyright © 2002-2024 CircleID. All rights reserved unless where otherwise noted.
Local Time: Thursday, November 21, 2024 01:26 AM PST – Page Load: 0.1493 Sec.