A security researcher has identified a critical bug in Android 16 that bypasses VPN protections, potentially exposing user IP addresses. Despite the vulnerability affecting all VPN applications, Google has classified it as "Won't Fix," stating it falls outside their threat model. This decision has drawn criticism, with Mullvad VPN also reporting the issue and highlighting its widespread impact on Android 16 users. AI
Summary written by gemini-2.5-flash-lite from 1 source. How we write summaries →
IMPACT This vulnerability could undermine the security and privacy features of VPNs on Android, impacting user trust and data protection.
RANK_REASON A bug in an operating system affecting third-party applications, with the OS vendor declining to fix it.
