Technology content trusted in North America and globally since 1999
8,223 Reviews & Articles | 62,312 News Posts

Android Jelly Bean, Kit Kat vulnerable to security flaw

New Android vulnerability gives cybercriminals the chance to monitor conversations after being rerouted from the VPN
By: Michael Hatamoto | Mobile Devices, Tablets & Phones News | Posted: Mar 3, 2014 7:33 am

A new flaw was recently found in the Google Android Jelly Bean and Kit Kat OS flavors, with the "critical flaw" compromising the virtual private network (VPN) in the Android OS.




Compromised devices allow cybercriminals to monitor communication after VPN traffic is sent to a different network address.


The flaw, which was found in India, can be successfully remedied by installing updates from OEM manufacturers, the CERT-In team says. Installing anti-virus and anti-malware protection on the device should help add additional layers to prevent Android exploits from causing problems.


"A critical flaw has been reported in Android's (virtual private network) VPN implementation, affecting Android version 4.3 and 4.4 which could allow an attacker to bypass active VPN configuration to redirect secure VPN communications to a third party server or disclose or hijack unencrypted communications," said the Computer Emergency Response Team of India (CERT-In).


Related Tags

Got an opinion on this news? Post a comment below!