Researchers have brought to light a new attack method – dubbed TunnelVision and uniquely identified as CVE-2024-3661 – that can be used to intercept and snoop on VPN users’ traffic by attackers who are on the same local network. “This is particularly dangerous for people who rely on VPNs to keep them safe, such as journalists and political dissidents,” Leviathan Security researchers Dani Cronce and Lizzie Moratti explained. The attack is imperceptible to the regular … More

The post Attackers may be using TunnelVision to snoop on users’ VPN traffic (CVE-2024-3661) appeared first on Help Net Security.