Google Publishes Chrome Fix For Serious VPN Security Hole

July 2*, 20*5

"Google has published an extension for its Chrome browser that fixes a serious security hole that can reveal a user's real IP address even though they're using a VPN. The vulnerability was made headlines in early 20*5 and caused a wave of panic but Chrome users can now mitigate the problem with few clicks."


"January this year details of a serious vulnerability revealed that in certain situations third parties were able to discover the real IP addresses of Chrome and Firefox users even though they were connected to a VPN.

This wasn’t the fault of any VPN provider though. The problem was caused by features present in WebRTC, an open-source project supported by Google, Mozilla and Opera.

By placing a few lines of code on a website and using a STUN server it became possible to reveal not only users’ true IP addresses, but also their local network address too."

https://torrentfreak.com/google-publishes-chrome-fix-for-serious-vpn-security-hole-*5072*/


How to disable WebRTC in Firefox

"Firefox users should be able to block the request with the NoScript addon. Alternatively, they can type “about:config” in the address bar and set the “media.peerconnection.enabled” setting to false."

https://torrentfreak.com/huge-security-flaw-leaks-vpn-users-real-ip-addresses-*50**0/