Last year, we discovered a vulnerability in iOS that causes connections to bypass VPN encryption. This is a bug in iOS that impacts all VPNs. We have informed Apple, and we are now sharing details so you can stay safe. protonvpn.com/blog/apple-ios-v

Hey @protonvpn, does this issue only affect IKEv2 VPN configurations or also OpenVPN and WireGuard (when both aren’t set to “always-on”)?

Also, do you know if this additionally impacts iOS 13.4 that was just released?

@protonvpn forgot to mention, awesome work discovering and reporting this!

Follow

@protonvpn hmm, apparently this is already known and documented by OpenVPN:

“Many Apple services such as Push Notifications and FaceTime are never routed through the VPN tunnel, as per Apple policy.”

- openvpn.net/vpn-server-resourc

Found in this bird site thread: nitter.snopyta.org/BucciaBucci

Sign in to participate in the conversation
nitrohorse Ⓐ

Personal instance of nitrohorse (nitrohorse.com).