最新您知道哪些法規適用於貴公司嗎?3 分鐘內即可確認。我們誠摯的禮物:歐盟法規工具韓國法規工具
我們能為您做什麼?

透過以下方式傳訊

KakaoTalkLINE

48 小時內回覆

傳送電郵給我們 →
部落格
Your iPhone Ignores Your VPN
行動安全

Your iPhone Ignores Your VPN

2026年6月11日·Alex Holmquist, Panke IT Solutions LLC

You switch on a VPN to hide where you are. Your iPhone never got the memo.

When iOS establishes a VPN connection, it does not tear down the connections already running. Long-lived sessions — most notably Apple Push Notification service (APNs) — keep talking to Apple outside the tunnel for minutes to hours, carrying your device's real IP address instead of the VPN's.[1]

The iOS 14 kill-switch API does not fully close the gap either: certain DNS queries from Apple's own services still bypass the tunnel.[2]

A decision flow: an outbound request reaches a check — is it an Apple service? If no, it routes through the VPN server and your real IP stays hidden. If yes, it goes straight to Apple's server and your real IP is exposed. Because Apple services run continuously, the conclusion is that Apple knows where you are all the time.

Apple calls this behaviour "expected." A true always-on VPN exists only on supervised devices managed through corporate MDM — not on a consumer iPhone.[1]

Use a VPN — but know the risk that lingers. The leak isn't the app you were worried about; it's the operating system underneath it, and you can't uninstall that. A real IP gives away roughly city-level location and your network identity, not a GPS pin, but enough to place you. And the phone keeps handing it to Apple continuously, before you open a single app.

After turning on a VPN, toggle airplane mode off and on to force the open connections to re-establish inside the tunnel.[1]


When was the last time you checked what your phone leaks before you opened an app?


References

  1. ProtonVPN, "VPN bypass vulnerability in Apple iOS (disclosure)" — https://protonvpn.com/blog/apple-ios-vulnerability-disclosure
  2. SecurityWeek, "No Patch for VPN Bypass Flaw Discovered in iOS" — https://www.securityweek.com/no-patch-vpn-bypass-flaw-discovered-ios/
擔心您的攻擊面暴露風險?

若想了解您的基礎設施在攻擊者掃描模型中的評分,請聯絡 contact@pankeit.com,進行攻擊面評估。

訂閱我們的部落格

掌握最新資安趨勢

絕無垃圾郵件,隨時可取消訂閱。

©2026 Panke IT Solutions LLC

Austin, TX