The leaked information includes login credentials and sensitive device data, reveals a CyberNews investigation.
Databases of three major Android VPN apps were reportedly recently leaked by a hacker who is selling 21 million user records online, including login credentials and sensitive device information, reveals an investigation by CyberNews.
According to the portal, a user of a popular hacker forum has put the stolen databases of three of these services up for sale: SuperVPN, which is considered one of the most popular VPNs, with more than 100,000,000 downloads on the Play Store, GeckoVPN (with more than 1,000,000) and Chatvpn (with more than 50,000).
A heavy blow to safety
The data allegedly exposed includes emails, usernames and full names, countries, randomly generated password strings, data related to payment, and premium membership status with its expiration date. One of the files also appears to contain important device information, such as serial numbers, phone types and manufacturers, device IDs, or IMSI (International Mobile Subscriber Identity) numbers.
The seller claims that the data has been extracted from publicly available bases, which would mean that companies didn’t even disable the default database credentials.
CyberNews warns that, if this information is confirmed, it would be a serious blow to the security and privacy of the user by these three services, which, moreover, is not the first in the case of SuperVPN, of which it was warned last year its free version had a number of critical vulnerabilities. In this sense, the portal recalls that one of the main arguments in favor of the use of a VPN is precisely to encrypt the user’s Internet traffic and protect their privacy.
If you liked it, share it with your friends!