Security News > 2020 > October > Flaws in Winston Privacy Devices Can Expose Networks to Remote Attacks
Researchers say they've uncovered a series of potentially serious vulnerabilities in devices made by online privacy firm Winston Privacy.
Winston Privacy provides a hardware-based service designed to boost online privacy and security.
The company says it can block online surveillance, accelerate browsing, and block ads and trackers, and it also advertises its services as an alternative to traditional VPNs. A consultant at offensive security testing company Bishop Fox and an independent researcher discovered a total of 9 vulnerabilities in the device provided by Winston Privacy to customers.
Chris Davis, the Bishop Fox researcher credited for finding the vulnerabilities, told SecurityWeek that an attacker could exploit some of these weaknesses to hack a Winston Privacy device remotely from the internet by convincing the targeted user to access a malicious webpage.
Updated with statement from Winston Privacy and clarifications that the critical vulnerabilities were patched within 24 hours.