Mastodon Feed
Reblogged by slightlyoff@toot.cafe ("Alex Russell"):
campuscodi ("Catalin Cimpanu") wrote:
CitizenLab has discovered a new attack named Port Shadow that can allow threat actors to launch machine-in-the-middle attacks on VPN connections.
The attack involves sending specially crafted packets to VPN servers.
The packets exploit the server's connection tracking feature to redirect other users' traffic through the attacker's infrastructure.
CitizenLab says the vulnerability affects OpenVPN, WireGuard, and OpenConnect servers running on Linux or FreeBSD.
