SuperVPN has a security flaw, if you are installing it, delete it now

Google recently announced the removal of the VPN - SuperVPN service from its Android app store after uncovering major security flaws that allowed hackers to send users to malicious servers.

Before being deleted, SuperVPN was among the top 5 most popular VPN applications on Google App Store with 100 million downloads.

Although this VPN app has been removed from the app store, it is still being used by a large number of users.

The tests show that the vulnerability in VPN can allow hackers to do many things like perform MITM (man-in-the-middle) attacks to get messages, get information via HTTP protocol. Secure or transfer users to malicious server. Although the user's information is encrypted, the password to decrypt is placed right in the application so bad guys can take advantage to perform acts for malicious purposes.

SuperVPN was announced by a company called SuperSoftTech from Singapore but was developed by a person named Jinrong Zheng from Beijing. Zheng is also the developer of LinkVPN, another VPN service that confronts SuperVPN on the App Store and is published by Shenyang Yiyuansu Network Technology.

A team in Australia has discovered vulnerabilities in SuperVPN since 2016. They ranked SuperVPN third in the list of applications with the highest risk of attack, when it was only about 10,000 times. download. The number of SuperVPN downloads soared from 50 to 100 million earlier this year, many downloaded to work from home when the COVID-19 outbreak.

However, this growth can be created by the issuer itself. They have posted many fake positive reviews, creating illegal back-links for the application to appear in the top of the App Store rankings, so that users can find and download more.

Although it has been removed, millions of users are still using SuperVPN, and are at risk of being hacked at any time. If you are still using this VPN app, delete it before it's too late.