all InfoSec news
Risky Behavior: VPN Providers Installing Root Certificates Without User Consent
April 27, 2022, 11:21 p.m. | brooke.crothers
Security Boulevard securityboulevard.com
Risky Behavior: VPN Providers Installing Root Certificates Without User Consent
brooke.crothers
Wed, 04/27/2022 - 16:21
- 4 views
Some VPN apps automatically install self-signed trusted root certificates without informed user consent, says cybersecurity research firm AppEsteem.
“We listed them after our research showed these apps automatically installing self-signed trusted root certificates without informed user consent for the risk that this introduced,” AppEsteem said in a blog.
The problem is, when an additional root certificate is installed by a VPN provider, …
More from securityboulevard.com / Security Boulevard
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Security Audit and Compliance Technical Analyst
@ Accenture Federal Services | Washington, DC
ICS Cyber Threat Intelligence Analyst
@ STEMBoard | Arlington, Virginia, United States
Cyber Operations Analyst
@ Peraton | Arlington, VA, United States
Cybersecurity – Information System Security Officer (ISSO)
@ Boeing | USA - Annapolis Junction, MD
Network Security Engineer I - Weekday Afternoons
@ Deepwatch | Remote