Researchers have brought to light a new attack method – dubbed TunnelVision and uniquely identified as CVE-2024-3661 – that can be used to intercept and snoop on VPN users’ traffic by attackers who are on the same local network. “This is particularly dangerous for people who rely on VPNs to keep them safe, such as journalists and political dissidents,” Leviathan Security researchers Dani Cronce and Lizzie Moratti explained.

Source: Help Net Security