Skip to main content

Most free Android VPNs leak data and many don’t even use encryption, says study

If you’re handing over your internet connection for free, don’t expect top-notch security.

For individuals seeking extra privacy online or trying to access geo-blocked content, a virtual private network (or VPN) can seem like an ideal fix. VPN applications protect users by encryp       For individuals seeking extra privacy online or trying to access geo-blocked content, a virtual private network (or VPN) can seem like an ideal fix. VPN applications protect users by encrypting internet traffic and routing it through different countries. That makes it harder for hackers to intercept your connection, and can also fool Netflix into thinking you're in a different country. However, these programs can also pose a risk to users.

new analysis of nearly 300 Android VPNs found that 84 percent of those studied leaked users’ web traffic, 38 percent contained malware or malvertising, and 18 percent didn’t encrypt data at all. Three of the apps even directly intercepted traffic, allowing, for example, operators to read a users’ emails if they visited Gmail. (In these three cases, the developers claimed they intercepted traffic only in order to speed up the connections) You can see a list of the worst offenders when it came to malware below, while the report found Neopard, DashVPN, and DashNet intercepted traffic.

The report was compiled by security researchers from a number of institutions including the University of California at Berkeley and CSIRO, a federal research agency in Australia. Narseo Vallina-Rodriguez, a security researcher from IMDEA Networks and ICSI who co-authored the study, said he was not surprised by the findings. “To me, the shocking fact was that people trust this kind of technology,” Vallina-Rodriguez told The Verge. He said in using these apps, individuals are just handing over their internet connections, and if the company handling this data isn’t trustworthy, they can get up to all sorts of mischief.

The threats posed by these leaky apps varies. In the case of those that didn’t encrypt traffic (usually a staple function of a VPN), it might leave someone’s connection open to snooping when using public Wi-Fi. With apps that inserted their own malware or malvertising, the threat might not necessarily be to the users’ data, but to their online experience — with a VPN replacing a website’s ads with their own, more intrusive versions.

IT ALL COMES DOWN TO TRUST

The study focused on free VPN apps available on Android, but Vallina-Rodriguez says paying for a service isn’t necessarily a guarantee of security. With paid VPNs there isn’t an incentive to monetize users by selling on their data or inserting adverts, but users are still trusting a company with their internet traffic. Arguably, though, this is no different than trusting your ISP.

The report should be interpreted with a few caveats in mind. Firstly, the apps it studied were collected last year, with some already removed from the Play Store. And secondly, that it’s impossible to say for certain whether security holes appeared in apps for malicious reasons or not. “It’s often just ignorance,” says Vallina-Rodriguez. “A lack of knowledge.” The study didn’t cover VPNs on iOS either, although Vallina-Rodriguez suggests that the App Store’s more thorough vetting process might keep shadier operators out.

So what can users do to use a VPN safely? Well, paying for one is better than not, as it takes away an incentive for snooping. Using services that have been around for a while also helps. And if you absolutely must use a free VPN, avoid those which ask for too many permissions on your phone (like looking at your contacts) or that insert their own advertising — those are bad signs. A trustworthy VPN offers solid protection in many cases, but they can still be a risk.

Comments

Popular posts from this blog

Soaring Bitcoin Price Leads $159 Billion Crypto Market Recovery

Bitcoin  Well, somebody bought the dip. Just as critics were rushing to proclaim that the bitcoin bubble had burst, the markets staged a $159 billion recovery. The rally was headlined by the bitcoin price, which rebounded from its sub-$10,000 fling and is currently flirting with $12,000. Several other top-tier coins, meanwhile, returned single day increases in excess of 40 percent. Source: CoinMarketCap Altogether, the  cryptocurrency market cap  clawed its way back to $574 billion, representing a 38 percent recovery from Wednesday’s intraday low of $415 billion. Bitcoin Price Eyes $12,000 Wednesday served as a trial-by-fire for recent bitcoin investors, some of whom had purchased the flagship cryptocurrency for $19,000 at the height of the rally in mid-December. Bitcoin Price Chart The correction forced the  bitcoin price  below $10,000 for the first time since early December, but Thursday’s rally enabled bitcoin to regain a bit...

Bitcoin Laundering” Study: Where Do Criminals Turn to Mask Illicit Cryptoassets?

A recent study ( PDF ) from the Foundation for Defense of Democracies’ Center on Sanctions and Illicit Finance and blockchain analytics company Elliptic explored the “bitcoin laundering” ecosystem. In the study, Elliptic’s forensic analysis of the Bitcoin blockchain and other publicly available data were used to track the flows of illicit funds from 2013 to 2016. “This study aimed to identify where individuals turn in order to cash out or transmit bitcoins (BTC) acquired from illicit entities and to discover typologies for criminals ‘laundering’ bitcoins,” the report says. The study describes bitcoin laundering as a special type of money laundering that exists within the Bitcoin network where a user moves some bitcoins to a new address in a manner that obscures the original source of funds. The conversion of bitcoins into fiat currency on exchanges that lack adequate anti-money laundering (AML) and know-your-customer (KYC) policies can also fall under the category ...

Bitcoin Brokers Reviews for Learning Trustworthy Brokerage Firm

When you are trading the cryptocurrency it is necessary to have accessibility to a relied on brokerage company. Though there are lots of brokerage companies available that can be counted upon, figuring out the one that can additionally ensure you attractive returns are essential. Undeniably with Bitcoin brokers’ testimonials you could do it fairly precisely. Bitcoinbrokers are services provider that allow you to buy Bitcoin anonymously for buyers, and also market Bitcoin at a premium. For customers of Bitcoin you will be provided a financial institution account with name, account number and directing information. You transfer loan right into the account to obtain Bitcoin in return. This is lot even more easier now than a pair of years ago. It goes without saying delving into Bitcoin profession is not as very easy as it seems. You require to do research, have an enough understanding of how the profession goes. Additionally, you should understand the sort of people that you are g...