**⇄ Σ = Mᄃ² ⇆** @[email protected] · Jul 22, 2024, 04:04

**⇄ Σ = Mᄃ² ⇆** @[email protected] · Jul 22, 2024, 04:04

⇄ Σ = Mᄃ² ⇆ @[email protected]

Jul 22, 2024, 04:04

team of researchers warns that VPNs are affected by a vulnerability that can be exploited to launch man-in-the-middle (MitM) attacks, enabling threat actors to intercept and redirect traffic

attack technique, named Port Shadow and tracked as CVE-2021-3773, builds on research first presented by Benjamin Mixon-Baca and Jedidiah R. Crandall back in 2021

https://www.breakpointingbad.com/2021/09/08/Port-Shadows-via-Network-Alchemy.html

paper detailing the research was published this week

(PDF URL)

https://petsymposium.org/popets/2024/popets-2024-0070.pdf

**"We Be The Humans"** @[email protected] · Jul 22, 2024, 04:09

**"We Be The Humans"** @[email protected] · Jul 22, 2024, 04:09

Jul 22, 2024, 04:09

"We Be The Humans" @[email protected]

@ecksmc

Does this attack work on the wire guard protocol ??

https://en.wikipedia.org/wiki/WireGuard

**⇄ Σ = Mᄃ² ⇆** @[email protected] · Jul 22, 2024, 04:21

**⇄ Σ = Mᄃ² ⇆** @[email protected] · Jul 22, 2024, 04:21

Jul 22, 2024, 04:21

⇄ Σ = Mᄃ² ⇆ @[email protected]

@corlin yup

vulnerability affects OpenVPN, WireGuard, and OpenConnect running on Linux or FreeBSD. FreeBSD is less vulnerable

"We found that Linux/Netfilter + (OpenVPN and WireGuard), which a large fraction of VPN services use, has the highest susceptibility to these attacks regardless of client platform (PC, Android, and iOS)"