"Linux Bug Opens Most VPNs to Hijacking"
Security researchers at the University of New Mexico and Breakpointing Bad discovered a vulnerability that is contained by most Linux distributions. The researchers used a proof-of-concept exploit that allowed them to determine whether a user is connected to a virtual private network (VPN), find out the user's virtual IP address, inject forged packets into the connection used to communicate with remote servers, and more. In addition to affecting Linux distributions, including Ubuntu, Fedora, Debian and Unix-like operations systems such as FreeBSD and OpenBSD, the bug affects macOS, iOS and Android. In regard to VPN technology, the proof-of-concept exploit can be used against OpenVPN, WireGaurd, and IKEv2/IPSec. This article continues to discuss an attack that could be executed through the exploitation of the Linux bug, as well as which operating systems and VPNs are affected.