According to Tom's Guide , Google has just issued an official warning about the alarming increase in malicious VPN apps and extensions, calling it an increasingly common tactic used by cybercriminals to collect sensitive user data.
Google issues urgent warning about wave of malicious VPNs.
According to the latest 'Fraud and Scams Advisory,' Google says that scammers are increasingly disguising malware as VPN services. Users seeking free or quick security tools are at the highest risk.
Free VPN apps pose numerous privacy risks.
PHOTO: SCREENSHOT FROM TOM'S GUIDE
The demand for VPNs continues to skyrocket as more and more websites impose access restrictions, but not all services are trustworthy. Recent analysis shows that insecure free VPNs often log user data, embed trackers, or rely on manipulating fake reviews to appear legitimate. A new Google report highlights how these risks are being exploited by phishing organizations globally.
According to Google, threat actors are distributing fake VPN apps across multiple platforms. They often impersonate reputable VPN brands, use misleading advertising, or exploit trending events (including geopolitical tensions) to trick users into installing them.
Once installed, these applications can deploy dangerous malware such as:
- Info-stealer : Software specifically designed to steal information.
- Remote access trojan (RAT) : A Trojan that allows remote access.
- Banking Trojan : A Trojan that targets banking information.
Google notes that attackers could use this access to steal everything from browsing history and private messages to financial information and even cryptocurrency wallet data.
To combat this, Google says Android and Google Play use machine learning systems to detect malicious apps. Users can also enable Google Play Protect for an additional layer of real-time protection. A new enhanced anti-phishing system has also been developed to block the installation of high-risk apps when users attempt to 'sideload' them from a browser or messaging app.
Signs of a malicious VPN
Google also pointed out some suspicious signs of malicious VPNs, including:
- Unreasonable permission requests : Demanding access to contacts or messages.
- Appealing advertising : Using suggestive ads or manipulative promotions to entice users to download.
- User tracking : Monitoring user activity or selling data to third parties.
- Ambiguous policies : Concealing privacy policies that are vague or misleading.
- Lack of transparency : There are no audits or any verifiable information about the company.
- The 'safe browsing' cover : Providing malware under the guise of offering a solution for safer web browsing.
Tom's Guide previously reported that by 2025, up to 80% of free VPNs could embed trackers, and the percentage of free VPN apps selling data could reach 60%. Fake reviews are also a major problem, potentially accounting for up to 30% of all VPN app reviews, making insecure tools appear trustworthy.
Source: https://thanhnien.vn/google-phat-canh-bao-khan-ve-ung-dung-vpn-mien-phi-185251114103534633.htm
![[Image] Hanoi's urban life under the challenge of a "scorching hot" environment](https://vphoto.vietnam.vn/thumb/1200x675/vietnam/resource/IMAGE/2026/05/25/1779706979265_nang-nong-t5-2026-minh-duy-7-4636-jpg.webp)
![[Image] Close-up view of the interchange connecting the two expressways and Long Thanh Airport.](https://vphoto.vietnam.vn/thumb/1200x675/vietnam/resource/IMAGE/2026/05/25/1779703378210_ndo_br_z7863716673926-224453a31600126cce10622af6290afd-4549-jpg.webp)
![[GALLERY] 3 "dead games" that gamers regret the most](https://vphoto.vietnam.vn/thumb/402x226/vietnam/resource/IMAGE/2026/05/25/1779718386120_de-2-png.webp)
Comment (0)