Any app on recent Android versions can leak certain traffic
Summary
A security vulnerability has been identified in recent Android versions that allows any installed app to potentially leak certain network traffic.
Similar Articles
GrapheneOS fixes Android VPN leak Google refused to patch
GrapheneOS released an update fixing a critical Android VPN leak vulnerability that Google declined to patch in stock Android 16. The fix disables a QUIC connection optimization that allowed apps to bypass VPN protections and expose real IP addresses.
Force all app traffic into the tunnel
Mullvad VPN’s iOS app adds “Force all apps” toggle to block all traffic leaks by enabling includeAllNetworks, accepting Apple bugs that can brick updates.
Apple patches high-severity eavesdropping vulnerability in Beats Studio Buds
Apple has patched a high-severity eavesdropping vulnerability in Beats Studio Buds, tracked as CVE-2025-20701, which could allow attackers to listen in on audio. The flaw was discovered by security firm Sentinel One and is part of broader Bluetooth vulnerabilities.
Nearly Half of LG Smart TV Apps Contain Residential Proxy SDKs
A security report reveals that nearly half of LG and Samsung smart TV apps contain residential proxy SDKs that can covertly use the TV's internet connection to route other people's traffic, raising significant privacy concerns.
I broke AppLovin's mediation cipher protocol
A researcher reverse-engineered AppLovin's ad mediation cipher protocol, revealing that it uses a weak non-cryptographic PRNG and a static salt to encrypt device information, allowing deterministic re-identification of iPhones across apps even when users deny tracking permission.