One of the most widely used mobile operating system in the world, Android is said to be secure in many ways but there are loop hole in the system, it was discovered by Indian Computer Emergency Response Team(Cert-In) that the Virtual Private Network(VPN) in the android system is flawed so that an attacker can make use of this vulnerability and gain acess to the system and hijack private user data and gather many other company related data if it is connected to an firm's network.
This vulnerability has been found out in Android 4.3 jellybean and the latest iteration of Android 4.4 KitKat, many of the phones use these and they are in danger of getting their information stolen from their mobile devices, all the other versions from Gingerbread and the lower iteration dont have such issues.
VPN basically is used to give a private protected network over an public network, Many organizations use it to make their employees to connect to their network remotely. The vulnerability was found and it was reported to many of these consumers and they are trying to control it. The Issue was found in India by Cert-In, hope this issue is resolved by Google soon with a update.