Crypto

Huge Safari Flaw Threatens to Expose Your History and Google Account

A bug in Safari allows users to take browsing history from iPhones, iPads and Macs. By exploiting a serious breach, a malicious website can discover all the sites you’ve visited, as well as your Google ID.

FingerprintJS, a company specializing in Internet fraud detection, has just discovered a serious bug in Safari, the default search engine on iPhones, iPads and Macs. In a report published on its blog on January 14, 2022, the firm explains that it has detected a flaw in the implementation of IndexedDB, an API capable of storing data in a browser, in Safari on Mac and iOS.

Due to this flaw, any website is capable of capturing data from Internet users who consult it. “The flaw allows websites to learn which websites the user visits in different tabs or windows,” FingerprintJS explains in its report. Ultimately, your browsing history is at the mercy of any fraudulent site.

On the same topic: Safari bug in macOS Catalina prevents sites from loading and crashes the browser

A bug in Safari lets you know your Google ID

By exploiting the breach, a website can also steal your Google User ID. “Authenticated users can be uniquely and accurately identified. Some of the most popular examples are YouTube, Google Calendar or Google Keep. All of these websites create databases that include Google’s authenticated user ID,” the firm continues.

With this ID in hand, a malicious website can collect your account data. Using the flaw described in their report, the researchers managed to steal the user’s avatar. With this image it is easy to find an individual on social networks, particularly on Facebook. “Untrustworthy or malicious websites can learn the identity of a user, but also allow multiple separate accounts used by the same user to be linked,” FingerprintJS warns, clarifying that data breaches do not require any action on the part of the user. .

Almost all websites that use the IndexedD JavaScript API are affected by this massive breach. Note that the flaw only affects Safari 15, the latest version of the web browser. If you are still using an older version of the browser, you risk nothing. Aware of the bug, Apple is developing a fix.

Rank Math Seo Pro Weadown, Wordfence Premium Nulled, Yoast Nulled, PHP Script, Fs Poster Plugin Nulled, Astra Pro Nulled,Woodmart Theme Nulled, Wpml Nulled, Avada 7.4 Nulled, Woodmart Theme Nulled, PW WooCommerce Gift Cards Pro Nulled, Elementor Pro Weadown, Newspaper – News & WooCommerce WordPress Theme, Nulledfire, Slider Revolution Nulled, Elementor Pro Weadown, Jnews 8.1.0 Nulled, WeaPlay, Business Consulting Nulled, WP Reset Pro, Newspaper 11.2, Flatsome Nulled, Woocommerce Custom Product Ad, Premium Addons for Elementor, Jannah Nulled, Consulting 6.1.4 Nulled, Plugins, WordPress Theme, Dokan Pro Nulled

Back to top button