Please delete this VPN service immediately, tens of millions of users are having security holes
Google quickly removed it from the app store, but a large number of users continued to use it.
Google recently announced that it had removed a VPN service on its Android app store, after finding major security flaws that allowed hackers to send users to malicious servers. This application was SuperVPN , before being deleted, there were 100 million downloads and belonged to the top 5 most famous VPN applications on Google App Store.
Tests show that this VPN can help hackers do a lot of things: apply MITM (man-in-the-middle) attacks to get messages, transfer users to malicious servers or get information through. HTTP protocol is not secure. Although the information of the user and the other service side is encrypted, the password for decryption is set at the date in the application, which can be exploited by bad guys.
Before being deleted, SuperVPN also met a lot of criticism about security issues. This application was published by a company called SuperSoftTech from Singapore, but after the investigation, it was developed by a person named Jinrong Zheng from Beijing. Zheng is also the developer of LinkVPN, another VPN service announced by Shenyang Yiyuansu Network Technology to confront SuperVPN on the App Store.
Since 2016, a team in Australia has discovered SuperVPN vulnerabilities and ranked it third in the list of applications with the highest risk of being hacked. At this time, SuperVPN has only been installed about 10,000 times. The app has skyrocketed in downloads from 50 to 100 million earlier this year after the outbreak of the COVID-19, many downloaded to work from home.
This strong growth may also come from the publisher itself, when they post a lot of fake positive reviews, create illegal back-links to bring the app to the top of the App Store rankings, make it easier for users to find and download.
To date, there are still millions of users using SuperVPN, and they are still at risk of being hacked at any time. If you are one of them, delete it before it's too late and use services from a more reputable source.
Update 12 April 2020
You should read it
- Detecting zero-day vulnerabilities in Internet Explorer helps hackers gain control of the computer
- IBM developed a new technology to patch security holes
- Microsoft expert discovered a series of serious code execution errors in IoT, OT devices
- Find security holes on every site with Nikto
- Internet Explorer has vulnerabilities, unused users are still hacked
- Microsoft has not patched security issues in IE8 for 7 months
- Security vulnerabilities - basic insights
- 9 misconceptions about security and how to resolve
- EternalRocks - more dangerous malicious code than WannaCry exploits up to seven NSA vulnerabilities
- Review Kaspersky Internet Security 2021: A comprehensive set of security tools for computers
- The NSA identifies 4 'critical' security vulnerabilities of cloud systems
- 5 common errors in managing security vulnerabilities
Maybe you are interested
Instructions to turn off the Spotify Canvas feature KeyboardTest - Software testing keyboard, checking keyboard errors Dell Latitude 9510 officially launched: 5G support, up to 30 hours of battery life Fix error 'Unfortunately Google Allo has Stopped Error on Android' Lunar New Year holiday calendar 2019, New Year 2019, holiday 2018 10 types of people you should avoid as far as possible in your life