ProtonVPN: "Last year, we discovered a vulnerability in iOS t…" - Mastodon

ProtonVPN @protonvpn@mastodon.social

Last year, we discovered a vulnerability in iOS that causes connections to bypass VPN encryption. This is a bug in iOS that impacts all VPNs. We have informed Apple, and we are now sharing details so you can stay safe. https://protonvpn.com/blog/apple-ios-vulnerability-disclosure/

Mar 25, 2020, 20:11 · · Web · · ·

Mar 26, 2020, 01:32

nitrohorse Ⓐ @andreas@nitro.horse

Hey @protonvpn, does this issue only affect IKEv2 VPN configurations or also OpenVPN and WireGuard (when both aren’t set to “always-on”)?

Also, do you know if this additionally impacts iOS 13.4 that was just released?

Mar 26, 2020, 01:34

nitrohorse Ⓐ @andreas@nitro.horse

@protonvpn forgot to mention, awesome work discovering and reporting this!

Mar 26, 2020, 22:37

nitrohorse Ⓐ @andreas@nitro.horse

@protonvpn hmm, apparently this is already known and documented by OpenVPN:

“Many Apple services such as Push Notifications and FaceTime are never routed through the VPN tunnel, as per Apple policy.”

- https://openvpn.net/vpn-server-resources/faq-regarding-openvpn-connect-ios/#If_my_OpenVPN_profile_uses_redirect-gateway_does_that_guarantee_that_all_of_my_network_traffic_will_be_routed_through_the_VPN_tunnel

Found in this bird site thread: https://nitter.snopyta.org/BucciaBuccia/status/1243292224827383814

Sign in to participate in the conversation