"Android 'Always-on VPN' Reportedly Leaks Some Data — Does it Include IP Addresses?"
Mullvad VPN discovered that Android leaks traffic whenever the device connects to a Wi-Fi network, even when the "Block connections without VPN" or "Always-on VPN" features are enabled. Source IP addresses, DNS lookups, HTTPS traffic, and possibly NTP traffic are among the data being leaked outside VPN tunnels. This is a design choice that is built into the Android operating system. However, due to an inaccurate description of the "VPN Lockdown" features in Android's documentation, Android users were likely unaware of this until now. Mullvad discovered the flaw during an unpublished security audit, issuing a warning to raise awareness and put additional pressure on Google. VPNs are secure network connections that encrypt internet traffic transmitted across public networks. This article continues to discuss the leak of data and traffic through Android's "Always-on VPN" feature.