What’s WebRTC and why is it leaking your true IP address

VPN’s and Proxys allow their users to search and browse the web anonymously, they do this by masking there original IP addresses. This is done by redirecting the user’s traffic through another device on the Internet.

However, a recently discovered security flaw allows remote sites to take advantage of WebRTC (Web Real Time Communication, a feature built in to most browsers) to reveal a user’s true IP address, even if they’re connected to a VPN. As far as we know, sites aren’t taking advantage of the flaw yet, but considering services like Hulu, Spotify, Netflix, and others are taking steps to identify and lock out VPN users, it’s not a stretch to assume they’ll start.

3 steps to know if you have WebRTC:

  1. Visit: WhatIsMyIPAddress.com and note the given IP address.
  2. Start up your VPN service and once again visit: WhatIsMyIPAddress.com. The IP address should have changed. Once again note the IP.
  3. Visit Diafygi.github.io/webrtc-ips and note which IP address the website gives you. If the IP is the same as the IP in step 2 then you are not effected.

How to circumvent WebRTC:

Chrome: Install the ScriptSafe extension. It will block WebRTC and is also a good extension to have anyway.

Firefox: Install the Disable WebRTC addon for Firefox. This is a small and sweet extension for Firefox that does the job just great.

Original news source: LifeHacker.com
Image Source: PixaBay.com

James Stevenson

Im a Cyber Security enthusiast that loves all things to do with technology. I'm specifically interested in cyber security and ethical hacking.

You may also like...