A vulnerability in Safari can ポルノ 洋画be exploited to expose your browser history — and possibly elements of your identity.
Revealed in a Saturday blog post by FingerprintJS, the bug was introduced to Safari 15 via the Indexed Database API(IndexedDB), which is part of Apple's WebKitweb browser development engine. To put it simply, IndexedDB can be used to save data on your computer such as websites you've visited, making them load quicker when you return to them later.
IndexedDB also usually follows the same-origin policysecurity mechanism, which doesn't let websites freely interact with each other unless they have the same domain name (among other requirements). Think of it like being in quarantine and only being allowed to hang out with members of your household. So for example, Netflix can't access IndexedDB's saved data to find out you've been cheating on them with YouTube.
Unfortunately, the bug revealed by FingerprintJS causes IndexedDB to violate the same-origin policy, exposing data it has collected to websites it didn't collect it from. Even worse, some websites such as those in Google's network use unique user-specific identifiers in the data provided to IndexedDB. This means that, if you're logged into your Google account, the collected data can be used to precisely identify both your browsing history and details of your account. And if you're logged into more than one account, it can figure that out too.
"Not only does this imply that untrusted or malicious websites can learn a user’s identity, but it also allows the linking together of multiple separate accounts used by the same user," wrote FingerprintJS. They also released a demonstrationshowing the type of information the exploit can reveal.
FingerprintJS reported the bugat the end of last November, but Apple still hasn't fixed it. Mashable has reached out to Apple for comment.
All of this is concerning, but there isn't much you can do about it right now. Browsing in Safari's Private mode can mitigate the potential damage, since a private tab can't tell what's going on in any other tabs regardless of whether they're private or public. However it still isn't foolproof.
"[I]f you visit multiple different websites within the same [private] tab, all databases these websites interact with are leaked to all subsequently visited websites," wrote FingerprintJS.
Mac users can avoid the vulnerability by switching from Safari to a different browser, but people on iOS or iPadOS are out of luck. While only Safari has been impacted on Mac, Apple's requirement that all iOS and iPad web browsers use WebKit means the IndexedDB bug has impacted every browser on these systems. The best we can do is either wait for Apple to come out with a patch, switch to an Android, or just log off.
Topics Apple Cybersecurity
Funeral Services Announced for Officer Hirai
John Lewis mourners push back against hypocritical GOP remembrances
Here's why Gabbie Hanna is all over TikTok
Olivia Colman's Oscar speech reimagined as the months of 2020 is perfection
Plaque Honoring Little Tokyo Advocate Damaged
Mia Khalifa is now a TikTok star, and she loves it
Chance the Rapper is catching major blowback for defending Kanye's 2020 'campaign'
The surprising reason Lily Allen's 'Smile' went viral on TikTok
JCCSC Installation/Awards Luncheon on Jan. 28
The test that Trump keeps bragging about acing isn't meant to be hard
Nikkei Veterans Among WWII Chevaliers Honored
Haunted TikTok is the next evolution of internet horror
David Hockney's painted 'Vogue' cover is a soothing moment in your day
Beyoncé's releases new song, website for Black creators on Juneteenth
Activist Sahara to Speak at Faith UMC
Breonna Taylor's death shouldn't be an insensitive Twitter meme
Apple Watch adds automatic handwashing detection for Covid
OkCupid now lets all users share their pronouns, regardless of gender or orientation
Yoshino Named Deputy Managing Editor at Times
Kanye West claims he's running for president and Elon Musk is playing along
MIT unveils wearable guides for the visually impairedApple gives health updates and watchOS news at WWDCBanksy election stunt backfires in a big wayEven more ways James Comey hid from Trump before his firingManchester Redditor shares heartwarming gift from Muslim neighbourApple gives health updates and watchOS news at WWDCTrain for the resistance like Ruth Bader GinsburgWe turned the key UK election figures into glorious Top Trump cardsPresident Trump admits his executive order is a ban and somewhere, his lawyers are cryingSomething pretty shady happens when you Google the ginger emoji So Metaphorical Ruud vs. Draper 2025 livestream: Watch Madrid Open final for free Alibaba Cloud suffers second outage in a year, causing major apps to crash · TechNode JD reports modest revenue growth in Q3, CEO to assume leadership of retail sector · TechNode Volvo launches first electric MPV targeting Chinese premium segment · TechNode NYT mini crossword answers for May 4, 2025 NYT Strands hints, answers for May 4 'The Last of Us' Season 2, episode 4: Who is Isaac? An Evil Medium TSMC may build a third plant in Japan for 3nm chips · TechNode
0.1936s , 9984.4609375 kb
Copyright © 2025 Powered by 【ポルノ 洋画】Enter to watch online.New Safari bug can expose Apple users' browser history and Google account details,Global Perspective Monitoring
