NEW DELHI: A “critical flaw” has been detected in the virtual private network offered by Android operating systems in the Indian cyberspace leading to “hijack” of personal data of users.
Internet security sleuths have alerted consumers of this web-based service to guard against the spread of this virus which affects computer systems and mobile phones using the Android system.
The suspicious activity has been noticed in two Android versions: 4.3 known as ‘Jelly Bean’ and the latest version 4.4 called ‘KitKat’.
“A critical flaw has been reported in Android’s (virtual private network) VPN implementation, affecting Android version 4.3 and 4.4 which could allow an attacker to bypass active VPN configuration to redirect secure VPN communications to a third party server or disclose or hijack unencrypted communications,” the Computer Emergency Response Team of India (CERT-In) said in a latest advisory to users of this network. Continue reading