If you are using VPN ( Virtual Private Network ) connection, you can not be anonymous or safe as you thought, as reports surfaced of vulnerability, which allows real-user IP-address to be accurately determined.

This news comes courtesy of VPN vendor on behalf of Perfect Privacy (as seen Registry ), although there is, of course, caveats when it comes to tracking real IP, using the vulnerability.

The disadvantage is described as a “port failure,” and it affects the virtual private network service providers that offer port forwarding -., If they have no protection implemented on this issue, certainly

An attacker using the same VPN into a potential victim just need to configure port forwarding (please note that the victim does not have to use port forwarding), connect to the same server as the victim, and then trick the victim into clicking a link to a site that is under the attacker’s control.

An attacker will then be able to discover the real IP address in the victim.

This applies to all VPN protocols on all operating systems, improved notes Privacy (providing vendor VPN is not taken appropriate protective measures. Of course)

Mitigation

One proposed method to mitigate as follows, perfect privacy assumes blog on the issue: “The Client Connect server installed Rule party firewall to block access to the client real IP for portforwardings, which are not his own.”

You would expect that suppliers that are potentially in the firing line here is to respond quickly to this threat. Of course, the user vigilance is also a factor in the plan are not lured by the bait site attacker (although as noted Register BitTorrent users especially at risk, they should use port forwarding as their default torrent client port, and then they put ‘do not even need to be tricked into visiting a malicious Web site party).

There is already speculation about whether the film and music industry trade organizations are already using this vulnerability to track the IP-addresses of pirates.