A critical security flaw discovered in Android 16 allows malicious apps to leak a user’s real IP address even when “Always-On VPN” and “Block connections without VPN” are fully enabled, two settings users trust as an ironclad guarantee of privacy. Discovered by security researcher 0x33c0unt and publicly disclosed on April 30, 2026, the vulnerability exploits […]
The post Android 16 VPN Bypass Lets Apps Reveal Users’ Real IP Address appeared first on Cyber Security News.