NovoVocê sabe quais regulações se aplicam à sua empresa? Descubra em menos de 3 minutos. Nosso presente sincero:Mapeador da UEMapeador da Coreia
Como podemos ajudar?

Fale conosco em

KakaoTalkLINE

Resposta em até 48 horas

Envie-nos um e-mail →
Blog
Your iPhone Ignores Your VPN
Segurança Móvel

Your iPhone Ignores Your VPN

11 de junho de 2026·Alex Holmquist, Panke IT Solutions LLC

You switch on a VPN to hide where you are. Your iPhone never got the memo.

When iOS establishes a VPN connection, it does not tear down the connections already running. Long-lived sessions — most notably Apple Push Notification service (APNs) — keep talking to Apple outside the tunnel for minutes to hours, carrying your device's real IP address instead of the VPN's.[1]

The iOS 14 kill-switch API does not fully close the gap either: certain DNS queries from Apple's own services still bypass the tunnel.[2]

A decision flow: an outbound request reaches a check — is it an Apple service? If no, it routes through the VPN server and your real IP stays hidden. If yes, it goes straight to Apple's server and your real IP is exposed. Because Apple services run continuously, the conclusion is that Apple knows where you are all the time.

Apple calls this behaviour "expected." A true always-on VPN exists only on supervised devices managed through corporate MDM — not on a consumer iPhone.[1]

Use a VPN — but know the risk that lingers. The leak isn't the app you were worried about; it's the operating system underneath it, and you can't uninstall that. A real IP gives away roughly city-level location and your network identity, not a GPS pin, but enough to place you. And the phone keeps handing it to Apple continuously, before you open a single app.

After turning on a VPN, toggle airplane mode off and on to force the open connections to re-establish inside the tunnel.[1]


When was the last time you checked what your phone leaks before you opened an app?


References

  1. ProtonVPN, "VPN bypass vulnerability in Apple iOS (disclosure)" — https://protonvpn.com/blog/apple-ios-vulnerability-disclosure
  2. SecurityWeek, "No Patch for VPN Bypass Flaw Discovered in iOS" — https://www.securityweek.com/no-patch-vpn-bypass-flaw-discovered-ios/
Preocupado com sua superfície de ataque?

Se quiser saber como sua infraestrutura é avaliada no modelo de varredura de um atacante, entre em contato em contact@pankeit.com para uma avaliação de superfície de ataque.

Assine nosso blog

Fique por dentro das últimas tendências de segurança

Sem spam. Cancele quando quiser.

©2026 Panke IT Solutions LLC

Austin, TX