The rise of fake Virtual Private Network (VPN) applications is alarming as their usage has surged significantly in the third quarter of 2024. According to Kaspersky, the prevalence of these malware-laden apps has increased 2.5 times compared to the previous quarter in the Asia-Pacific region, with projections for further growth into the fourth quarter.
Cybercriminals are exploiting users seeking free VPN services, as highlighted by security expert Vasily Kolesnikov from Kaspersky. Many smartphone users mistakenly believe that VPN apps found in official stores, like the Google Play Store, are safe to use.
Kolesnikov notes, "The demand for VPN applications across all platforms, including smartphones and computers, continues to rise. Users often assume that if an app is available in an official store, it is secure and can help access content unavailable in their region. They also think free VPN services are a better option!" This misconception often leads to traps, evidenced by recent statistics showing a spike in dangerous VPN applications.
One major case uncovered in May 2024 involved the dismantling of a botnet known as 911 S5, which used several free VPN services like MaskVPN, DewVPN, and ShineVPN. This botnet affected 19 million unique IP addresses across more than 190 countries, making it one of the largest in the world.
Botnet administrators sold access to the compromised proxy servers to other cybercriminals, facilitating various crimes, including cyberattacks, money laundering, and mass fraud.
Kolesnikov advises users to stick to trusted VPN services to mitigate these risks. "To stay safe, users must remain vigilant against these threats and utilize reliable and trustworthy VPN solutions," he emphasized.