Two time zones while using bit vpn

Rock.87
Rock.87 ✭✭✭
edited November 13 in VPN

How did this website detect my VPN usage and determine that my real-world time zone differs from my virtual location's time zone? Is there a way to consistently mask my real-world time zone and only present the time zone associated with my virtual location to this website?

Best Answer

  • Alexandru_BD
    Alexandru_BD admin
    Answer ✓

    I did some research and asked an opinion from the VPN team as well, and I think this is what actually happens:

    The VPN will do so much as to mask your IP address and make it appear that you're browsing from the VPN server's location, however, the browser and system information may still reveal your true timezone. First, I would check if the timezone is still visible using another VPN, so it would be interesting to check if this happens only with Bitdefender's VPN, or while using others as well. I suspect that, since most web browsers report the system's local timezone through javascript, tools like 'browserscan' can retrieve this information directly from your browser, rather than relying on your IP. This is often used for localization purposes but can reveal your actual timezone regardless of the VPN location. Here's the thing: the VPN doesn’t change your system clock or timezone settings. When websites run scripts to check the local time on your device, they detect your original timezone based on your system settings.
    My point is, this doesn't really have to do with the VPN and it's not a privacy breach either. Most probably, you will encounter the same behavior with any VPN you use.

    Furthermore, there's also something called 'browser fingerprinting' and this is a method used by websites to gather various details about your device, browser, and configuration to create a unique identifier. Timezone is one of the data points collected in this process. Now, if you want your timezone to match your VPN’s server location, here are a few steps you can consider:

    • you could use a privacy-focused browser extension, one that can mask or alter your timezone to match your VPN server's location. Extensions like "Trace" or "Chameleon" may help;
    • set your device’s timezone to match the VPN server’s location. This will ensure that javascript-based checks detect the VPN's timezone rather than your local one;
    • browsers like Tor, are designed with privacy in mind and may mask more identifiable information, including timezone.

    Now, these would be my personal recommendations, the ones I can think of right now. There could be other ways.

    I hope this better explains the processes involved there.

    Regards

    Premium Security & Bitdefender Endpoint Security Tools user

Answers

  • You've made an important discovery here. This is a serious privacy breach occurring. I connected to a USA server via Bitdefender VPN, and here are the results. I am currently based in India.

    Also, as I checked, the issue persists when trying to select the double-hop VPN option as well.

    @Alexandru_BD

    Regards

    Life happens, Coffee helps!

    Show your Attitude, when you reach that Altitude!

    Bitdefender Ultimate Security Plus (user)

  • Rock.87
    Rock.87 ✭✭✭
    edited November 13

    if you ll disable java ( as the real location is shown with th e help of java ) the website ll not be able to perform the entire test but ll show the browser's fingerprint authenticity as 100% , don't know that even after disabling java the real location ll be vulnerable or not.

  • @Alexandru_BD, can you check on this?

    Regards

    Life happens, Coffee helps!

    Show your Attitude, when you reach that Altitude!

    Bitdefender Ultimate Security Plus (user)

  • Sure, I'll get back to you on this one.

    Premium Security & Bitdefender Endpoint Security Tools user

  • There is a problem somewhere. I installed the Windscribe extension in my Microsoft Edge (Chromium), selected the Switzerland server, but the website was still able to detect my original location.

    Furthermore, there's also something called 'browser fingerprinting' and this is a method used by websites to gather various details about your device, browser, and configuration to create a unique identifier. Timezone is one of the data points collected in this process. Now, if you want your timezone to match your VPN’s server location, here are a few steps you can consider:
    

    Browser fingerprinting collects various details, including timezone, to create a unique identifier. When using a VPN, the timezone may not match the VPN server location if the browser is using cached information or if the VPN connection is not properly established. That being said, if this is the case, then using a VPN is not an effective way to hide your identity, and you should have this checked by the developers.

    Regards

    Life happens, Coffee helps!

    Show your Attitude, when you reach that Altitude!

    Bitdefender Ultimate Security Plus (user)

  • Alexandru_BD
    Alexandru_BD admin
    edited November 14

    using a VPN is not an effective way to hide your identity - But it doesn't reveal your real IP, does it? And it also encrypts your online traffic. Ok, so browserscan says your timezone is Asia/Calcutta. How does this reveal your real identity, if I may ask? 😄 Now, it may reveal that you are using a VPN, but a lot of sites these days detect a VPN connection, that's no longer a secret. But the actual location and traffic are still anonymous.

    have this checked by the developers - I have already done this and you've read my response above. This is not some kind of feature they can simply add on the VPN, in my opinion. But there are some tweaks you can do so that your timezone is not leaked, should this be a concern. The VPN does its job and your traffic stays private and anonymous while connected, but it doesn't emphasize the timezone. At most, this could be a feature request, should you wish to pursue this further. But if you want my personal opinion, I don't think the timezone is a priority for the VPN, because it doesn't actually reveal anything that may compromise your privacy online.

    Premium Security & Bitdefender Endpoint Security Tools user

  • Thanks for the clarification, @Alexandru_BD. I searched the web and tried various time zone spoofing extensions, but none of them worked. Is there any extension that actually works, or could the developers provide information on the best extension to install for this scenario in the web browser, if you could ask them?

    Regards

    Life happens, Coffee helps!

    Show your Attitude, when you reach that Altitude!

    Bitdefender Ultimate Security Plus (user)

  • Rock.87
    Rock.87 ✭✭✭

    chameleon extension worked for me :

    after a little configuration i configured the both time zones , no double time zone alert this time :

    we can change the browser as well but changing the browser ve some important drawbacks:

    i think it ld be better if we could get such security from a single security solution named as Bitdefender instead of replying on other extensions.

  • Rock.87
    Rock.87 ✭✭✭

    Hi there ! thx a lot for your time & attention , really obliged. plz let me know a few things , Can chameleon block/alter browser fingerprinting & device info completely ?

    i would strongly recommend adding features like Chameleon blocks and browser fingerprinting alteration to BitVPN. This is because knowing a user's country can make it easier for hackers to launch targeted attacks, even if the user is using a VPN. By masking these details, BitVPN can make it significantly harder for hackers to identify and exploit vulnerabilities specific to a particular region.
    Knowing your country can make it easier for a hacker to target you, even if you're using a VPN and masking your location. Here's why:

    1. Targeted Attacks: Hackers can tailor their attacks to exploit vulnerabilities specific to your country's infrastructure, laws, or common user practices.
    2. Social Engineering: Hackers can use social engineering techniques that are more likely to succeed if they know your cultural context, language, and current events.
    3. Legal Hurdles: If a hacker is located in a different country, knowing your location can help them understand the legal risks they face and adjust their tactics accordingly.