I contacted Proton VPN about the TunnelVision exploit and I got a response. I feel great about it, thank you Proton!
Hi,
Thank you for your patience.
Our engineers have conducted a thorough analysis of this threat, reconstructed it experimentally, and tested it on Proton VPN. Please note that the attack can only be carried out if the local network itself is compromised.
Regardless, we’re working on a fix for our Linux application that will provide full protection against it, and it’ll be released as soon as possible.
If there’s anything else that I can help you with in the meantime, please feel free to let me know.
Have a nice day!
I am skeptical of this being viable on public Wi-Fi tbh. You’d need to know ahead of time which VPN servers the target will attempt to contact, some information about the target ahead of time, and you need to DHCP poison the entire network prior to the target connecting. That would effectively bring down the network for all but two hosts - the attacker and target.
I mean at that point, you can also just repeatedly deauth the target until it connects to your spoofed network and do whatever you want, and it would be way less obvious to an outside observer.