How TunnelVision Can Bypass Your VPN and Break the Internet: Vulnerability Explained

Video Description

TunnelVision is a new vulnerability that lets any attacker that pretends to be a DHCP server to inject any IP address routes into your computer’s routing table. This potentially lets them redirect traffic so it doesn’t go through your VPN, create a denial of service, or even man-in-the-middle your network traffic. In this video, you’ll see the attack happen live in action, how it works, and bigger cybersecurity consequences for it besides just turning off some someone’s VPN. 0:00 Introduction to Tunnel Vision Vulnerability 0:16 Demonstration of the attack in a lab environment 1:44 Explanation of the attack scenario 2:20 Effects of the Tunnel Vision attack on VPN protection 3:00 Risks associated with the vulnerability 4:10 Potential impact on critical infrastructure 4:33 Mitigation strategies for VPN users 5:00 Using virtual machines for added security 5:18 Considerations for using mobile hotspots 5:28 Setting up firewall rules to prevent attacks 5:40 Endpoint detection response (EDR) solutions 5:50 Network security monitoring tools 6:12 The importance of understanding networking fundamentals 7:03 Conclusion and invitation for discussion CVE: https://nvd.nist.gov/vuln/detail/CVE-2024-3661 Tunnel Vision Code (Try it out): https://github.com/leviathansecurity/TunnelVision More Info: https://www.leviathansecurity.com/blog/tunnelvision 👍 LIKE AND SUBSCRIBE 👏 #TunnelVision #Teleseer #Cyberspatial​ #VPN Get next-gen PCAP visualization and analysis at: https://cyberspatial.com