Using virtual private networks (VPNs) to ensure online privacy and security has become increasingly popular. However, it has been revealed that many Android VPN apps available on the Google Play Store possess critical vulnerabilities, putting millions of users at risk. The discovery was made by a team of academics from the University of California, Riverside.
Researchers conducted one of the largest studies to date, analyzing 234 Android VPN apps that were available on the Play Store. The findings were concerning, with the researchers identifying that 85% of the apps exhibited either security flaws or privacy-compromising functions.
Specifically, 18% of the VPN apps were identified to not encrypt user traffic, while 38% contained some form of malware presence. Additionally, approximately 67% of the VPN apps requested at least one permission that could potentially allow the app to track and collect user data.
The researchers further expressed concerns about the Chinese influence found in the apps, with 55% of the VPNs being either owned or operated by Chinese companies. This suggests the possibility of some apps being influenced by Chinese surveillance laws.
To enhance user awareness, the researchers have launched a website called “The VPN Trust Initiative (VTI)” that provides users with an overview of the privacy features and vulnerabilities of popular VPN apps. By doing so, they aim to empower users to make more informed decisions while choosing a VPN service and maximize their own privacy and security on Android devices.
