Comment on Novel attack against virtually all VPN apps neuters their entire purpose
Natanael@slrpnk.net 6 months agoPlaintext connections inside corporate networks can still be MITM’ed if the adversary knows what they’re targeting, while they can’t connect to the corporate network they can still steal credentials
dgmib@lemmy.world 6 months ago
You wouldn’t be able to MITM a plaintext connection inside a corporate network with this attack by itself. You could only MITM something that the attacker can access without your VPN.
Any corporate network that has an unsecure, publicly accessible endpoint that prompts for credentials is begging to be hacked with or without this attack.
Now you could spoof an login screen with this attack if you had detailed info on the corporate network you’re targeting. But it would need to be a login page that doesn’t use HTTPS (any corporations, dumb enough to do that this day and age are begging to be hacked), or you’d need the user to ignore the browser warning about it not being secure, which that is possible.
Natanael@slrpnk.net 6 months ago
I’m tech support, sooo many intranet sites on internal servers don’t have HTTPS. Anything important with automatic login could be spoofed if the attacker knows the address and protocol.
Chrome has a setting which I bet many orgs have a policy for;
chromeenterprise.google/policies/#OverrideSecurit…