VPN on iOS: Apple says security flaw has been fixed ProtonVPN Refute – This week, the internet pressed that there was a security issue the VPN application for iOS has to contend with. This issue isn’t new however Apple insists that the issue has been fixed.
In spite of the company saying it has offered a fix since the year 2019, the owner of ProtonVPN claims it’s an incomplete solution. The problem remains. Who is to blame?
VPN Security and Security in iOS: Proton refutes
Apple is very serious about security. But, there aren’t flawless systems, and Apple is the US company is a major victim of its popular security program.
In this regard this sense, in the month of March in 2020 the curtain was lifted over a matter that was an incredibly serious security breach within iOS for all VPN service.
Even though it’s been a while since the flaw was discovered however, it appears that Apple hasn’t yet fixed the flaw. This is according to the security specialist Michael Horowitz. He claims that VPN applications for iOS remain vulnerable to security vulnerabilities that are serious due to the well-known security issue that has been in the news since.
According to an expert, once an individual activates the VPN software, the application should immediately shut down all existing (non-secure) connections to data and then open them again within”the safe “tunnel”. This is a standard characteristic of every VPN service.
Horowitz conducted some tests and discovered that not all connections are shut down when the VPN application is activated. This means that some information is still being transmitted via an unsecure connection. This occurred with various VPN applications for iOS across various devices.
In certain situations, unsafe connections can last for a short period of time. This can be a huge issue because people often are able to activate their VPN immediately prior to performing any activity that is sensitive. In actual fact, Horowitz found that some of these connections are running for long periods of time. This includes Apple’s Push notifications.
The tests confirmed the suspicion and the complaint that ProtonVPN made for 2020. The issue was discovered with iOS 13.3.1 and said the flaw is still present to this day.
Proton has informed Apple that it has received a complaint, but that the tech giant hasn’t yet taken any steps.
Apple affirms that it has offered an update since the beginning of 2019
The issue for Apple appears to be solved since the year the beginning of 2019. At the very least, at WWDC 2019, the company revealed what seemed to be an approach to help VPN apps to fix the issue.
But there is a reason why this feature is disabled by default. It’s unclear the reason and what could be the rationale behind the creators of the different VPN applications not having implemented this feature.
In a counter-response Proton acknowledged that it was aware of the “fix” that was claimed. However, the company discovered that the fix was only partially efficient. Secure connections to certain Apple services remain after the VPN was activated.
Apple is, after all is there any security issue or is it
There is still confusion. Horowitz also pointed out that even iOS doesn’t know whether or whether the VPN service is in operation. In actuality, he used the following images to illustrate:
The “novel” seems to be not finished. Proton has contacted Apple yet again, and over the next few days, we could get more information.
In the meantime, Proton points out a problem that, as per Apple is not there. However, according to Proton the issue is not the same size that Apple initially stated however, it is still as a concern.
Let’s watch to see what Apple will say or do in the near future.Advertisement