In this article: Apple, browser, Mac, exploit
The author is Devindra Hardawar.
Apple device users are at risk of a browser privacy flaw. According to 9to5Mac, an exploit has been disclosed that allows attackers to get your recent browser history and even your account information from all supported platforms, as well as third-party browsers. The "same-origin" policy that prevents documents and script from interacting with content from another location is being violated by the IndexedDB framework.
The names of the databases are compromised by the flaw. This would be enough for a malicious site owner to grab your password, discover your profile picture, and learn more about you. The history can be used to piece together a profile of the sites you like. Private browsing won't defeat the exploit.
We asked Apple about it. On November 28th, FingerprintJS reported the issue, but Apple hadn't yet addressed it with security patches. Either a third-party browser on Macs or blocking all jаvascript is the only solution until then.
The editorial team at Engadget selects the products that are recommended. Some of the stories have affiliate links. We may earn an affiliate commission if you buy something through one of these links.
It's popular on Engadget.
All Rights Reserved © 2024
