Critical VPN security flaw detected in Android Jelly Bean, KitKat versions: Cert-In

Cert-In, that has been actively issuing security alerts lately, has now detected a critical flaw in the virtual private network (VPN) offered by Android operating systems in the Indian cyberspace. The flaw reportedly  leads to hijacking of personal data of users.

VPN technology helps create an encrypted tunnel into a private network over public Internet. Organisations use such connections to enable employees to securely connect to enterprise networks from remote locations using their desktops, laptops, tablets and so on.

  Internet security agencies have begun alerting consumers about this service and to safeguard the spread of such a virus that affects computer systems as well as phones using the Android operating system. The security flaw has been noticed in the Android 4.3 Jelly Bean and also the latest 4.4 KitKat version. It doesn’t affect older versions like Gingerbread.

  Cert-In is the nodal agency that helps combat hacking, phishing and also works at strengthening security-related defences of the Indian Internet domain. In its latest advisory to users, the Computer Emergency Response Team of India reportedly revealed, “A critical flaw has been reported in Android’s (virtual private network) VPN implementation, affecting Android version 4.3 and 4.4 which could allow an attacker to bypass active VPN configuration to redirect secure VPN communications to a third party server or disclose or hijack unencrypted communications.”

  Last month, Cert-In had alerted Android software based mobile phone users against a suspicious activity being detecte d in the commonly used search engine ‘Bing’ on Internet-enabled communication devices.Terming the severity of the malfunction as “medium”, the Indian cyberspace security agencies had alerted users that a possible attack of the virus could “compromise” sensitive information of the owner stored on the phone.

Soon after alerting about the Androd-Bing security issue, Cert-In had disclosed that multiple vulnerabilities were also detected in popular browsers such as Google Chrome and Mozilla Firefox . The vulnerabilities could be exploited by a remote attacker to bypass certain security restrictions, disclose potentially sensitive information, gain escalated privileges, execute arbitrary code and causes denial of service condition on the affected system.