Security News > 2020 > April > Google removes Android VPN with ‘critical vulnerability’ from Play Store
2020-04-09 09:48
Google has removed an Android VPN program from the Google Play store after researchers notified it of a critical vulnerability.
VPNpro, a company that reviews and advises on VPN products, warned in February of a vulnerability in the product that could cause a man in the middle attack, enabling an intruder to insert themselves between the user and the VPN service.
What this VPN app has done is to leave its users, people seeking extra privacy and security, to actually have less privacy and security than if they'd used no VPN at all.
Instead, it notified the Google Play Security Reward Program, operated for Google by HackerOne.
SuperVPN wasn't the only Android VPN to raise VPNpro's concerns.
News URL
Related news
- Google Warns of Actively Exploited CVE-2024-43093 Vulnerability in Android System (source)
- Google patches actively exploited Android vulnerability (CVE-2024-43093) (source)
- Week in review: Zero-click flaw in Synology NAS devices, Google fixes exploited Android vulnerability (source)
- Critical Zimbra RCE vulnerability under mass exploitation (CVE-2024-45519) (source)
- Google removes Kaspersky's antivirus software from Play Store (source)
- Apple Releases Critical iOS and iPadOS Updates to Fix VoiceOver Password Vulnerability (source)
- Week in review: Critical Zimbra RCE vulnerability exploited, Patch Tuesday forecast (source)
- Google Blocks Unsafe Android App Sideloading in India for Improved Fraud Protection (source)
- Google brings better bricking to Androids, to curtail crims (source)
- Experts Warn of Critical Unpatched Vulnerability in Linear eMerge E3 Systems (source)