Apple Safari Bug Can Expose Users’ Browser History, Google Account Details

And there’s not much you can do about it

The vulnerability comes down to an issue in Apple's WebKit. Credit: Rafael Henrique / SOPA Images / LightRocket Via Getty Images


A vulnerability in Safari can be exploited to expose your browser history — and possibly elements of your identity.

Revealed in a Saturday blog post by FingerprintJS, the bug was introduced to Safari 15 via the Indexed Database API (IndexedDB), which is part of Apple’s WebKit web browser development engine. To put it simply, IndexedDB can be used to save data on your computer such as websites you’ve visited, making them load quicker when you return to them later.


IndexedDB also usually follows the same-origin policy security mechanism, which doesn’t let websites freely interact with each other unless they have the same domain name (among other requirements). Think of it like being in quarantine and only being allowed to hang out with members of your household. So for example, Netflix can’t access IndexedDB’s saved data to find out you’ve been cheating on them with YouTube.


Read More

Leave a Reply


Oregon School Board Voted To Ban Political Ideology From Classrooms, Yet Left-Wing Administrators And Teachers Are Ignoring It

Common Sense