Friday, May 24, 2024
Sunday, May 19, 2024
CVE-2024-3661 - Workaround and Mitigation
On May 6, 2024, a researcher from Leviathan Security Group identified a new technique, termed as "TunnelVision", that can bypass VPN encapsulation and enable attackers to send the traffic outside a VPN tunnel using the built-in features of Dynamic Host Configuration Protocol (DHCP). TunnelVision involves the routing of traffic without encryption through a VPN. This traffic can be directed by the attacker's configured DHCP server using option 121, ultimately being redirected to the internet via a side channel created by the attacker. The existing VPN tunnel remains intact, and the side channel created by the attacker cannot be detected by the existing VPN tunnel. CVE-2024-3661 has been assigned to this critical vulnerability.
Workaround and Mitigation advise:
1. Instead of using public WiFi network, use a mobile hotspots for VPN connection
2. In hotel, instead of using hotel Wired or WiFi network directly, use a travel router to connect to hotel wired network, then use this network for VPN connection
3. Using a Virtual machine for VPN connection
Reference:
Fix Google Chrome update failed Error 7
Error:
There are Google Chrome update failed Error 7:
Solution:
Need to able to access tools.google.com and dl.google.com
Reference:
How to find which Access Point (AP) connected on Windows 10 / 11?
To find a AP which is your laptop connected, you can run the following command:
netsh wlan show in
There is 1 interface on the system:
Name : Wi-Fi
Description :
GUID :
Physical address :
State : connected
SSID :
BSSID : <This is the MAC address of the AP you connected>
Network type : Infrastructure
Radio type : 802.11n
Authentication :
Cipher :
Connection mode : Auto Connect
Channel :
Receive rate (Mbps) :
Transmit rate (Mbps) :
Signal : %
Profile :
Hosted network status : Not available
Subscribe to:
Posts (Atom)