all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

New TunnelVision Attack Allows Hijacking of VPN Traffic via DHCP Manipulation

Add to bookmarks
May 9, 2024, 5:55 p.m. | info@thehackernews.com (The Hacker News)

The Hacker News thehackernews.com

Researchers have detailed a Virtual Private Network (VPN) bypass technique dubbed TunnelVision that allows threat actors to snoop on victim's network traffic by just being on the same local network.
The "decloaking" method has been assigned the CVE identifier CVE-2024-3661 (CVSS score: 7.6). It impacts all operating systems that implement a DHCP client and has

attack bypass cve cve-2024 cvss cvss score dhcp hijacking local local network manipulation network network traffic operating systems private private network researchers score snoop systems threat threat actors traffic tunnelvision tunnelvision attack victim virtual virtual private network vpn

Visit resource

More from thehackernews.com / The Hacker News

Foxit PDF Reader Flaw Exploited by Hackers to Deliver Diverse Malware Arsenal 4 hours ago | thehackernews.com
agent agent tesla arsenal asyncrat +26
Defending Your Commits From Known CVEs With GitGuardian SCA And Git Hooks 5 hours ago | thehackernews.com
applications code cves defending +10
Cyber Criminals Exploit GitHub and FileZilla to Deliver Cocktail Malware 7 hours ago | thehackernews.com
1password abusing amos array +21
Latrodectus Malware Loader Emerges as IcedID's Successor in Phishing Campaigns 10 hours ago | thehackernews.com
campaigns cybersecurity email email phishing +14
Chinese Nationals Arrested for Laundering $73 Million in Pig Butchering Crypto Scam 1 day, 6 hours ago | thehackernews.com
april arrested atlanta charged +15
Grandoreiro Banking Trojan Resurfaces, Targeting Over 1,500 Banks Worldwide 1 day, 8 hours ago | thehackernews.com
as-a-service attacks banking banking trojan +28
Kinsing Hacker Group Exploits More Flaws to Expand Botnet for Cryptojacking 2 days, 23 hours ago | thehackernews.com
actor aqua arsenal botnet +16
New XM Cyber Research: 80% of Exposures from Misconfigurations, Less Than 1% from CVEs 3 days, 5 hours ago | thehackernews.com
cves cyber exposure exposure management +16
China-Linked Hackers Adopt Two-Stage Infection Tactic to Deploy Deuterbear RAT 3 days, 5 hours ago | thehackernews.com
access advancements asia blacktech +23

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada
View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA
View on infosec-jobs.com

Principal Security Research Engineer (Prisma Cloud)

@ Palo Alto Networks | Bengaluru, India
View on infosec-jobs.com

National Security Solutions Fall 2024 Co-Op - Positioning, Navigation and Timing (PNT) Intern

@ KBR, Inc. | USA, Beavercreek Township, 4027 Colonel Glenn Highway, Suite 300, Ohio
View on infosec-jobs.com

Sr Principal Embedded Security Software Engineer

@ The Aerospace Corporation | HIA32: Cedar Rapids, IA 400 Collins Rd NE , Cedar Rapids, IA, 52498-0505 USA
View on infosec-jobs.com