Media

• E-Commerce
• Investing
• Marketing and Advertising
• News and Media
• Business Services

Popular tags

• the
• to
• market
• united
• states
• united states
• states united
• llp
• announces
• global
• of
• stock
• earnings
• business
• stocks
• in
• call
• report
• data
• results

Keywords

2022-01-16 21:07:11| Engadget

Apple device users appear to be vulnerable to a significant browser privacy flaw. According to 9to5Mac, FingerprintJS has disclosed an exploit that lets attackers obtain your recent browser history, and even some Google account info, from Safari 15 across all supported platforms as well as third-party browsers on iOS 15 and iPadOS 15. The IndexedDB framework (used to store data on many browsers) is violating the "same-origin" policy that prevents documents and scripts from one location (such as a domain or protocol) from interacting with content from another, letting appropriately coded websites deduce Google info from signed-in users as well as histories from open tabs and windows.The flaw only compromises the names of the databases rather than the content itself. However, this would still be enough for a malicious site owner to grab your Google username, discover your profile picture and otherwise learn more about you. The history could also be used to piece together a rudimentary profile of the sites you like. Private browsing won't defeat the exploit, FingerprintJS said.We've asked Apple for comment. FingerprintJS said it reported the issue on November 28th, however, and that Apple hadn't yet addressed it with security patches honoring same-origin policy. Until then, the only solution may be to either use a third-party browser on Macs or block all JavaScript, neither of which is necessarily an option.

Category: Marketing and Advertising

Latest from this category

07.12 OpenAIs head of ChatGPT says posts appearing to show in-app ads are not real or not ads 07.12 X shuts down the European Commissions ad account the day after major fine 07.12 Missing NBC on Fubo? Here's how to watch Sunday Night Football this week and more 06.12 Judge puts a one-year limit on Google's contracts for default search placement 06.12 Apple's Johny Srouji could continue the company's executive exodus, according to report 06.12 Waymo's robotaxi fleet is being recalled again, this time for failing to stop for school buses 06.12 Meta plans to push back the debut of its next mixed reality glasses to 2027 06.12 Engadget review recap: Dell 16 Premium, Nikon ZR, Ooni Volt 2 and more Marketing and Advertising »

All news

07.12 OpenAIs head of ChatGPT says posts appearing to show in-app ads are not real or not ads 07.12 X shuts down the European Commissions ad account the day after major fine 07.12 Business news: GPTC rolls out electric bus and Braun names new picks 07.12 Covid fraud and error cost taxpayers 10.9bn, report will say 07.12 Missing NBC on Fubo? Here's how to watch Sunday Night Football this week and more 07.12 Housed in an old stable, Pullman Tech Workshop works to bring stability to area housing stock, residents 07.12 White Eagle in Niles closes after decades as a hub for Polish community and political powerhouses 07.12 Kaynes shares plunge 43% from October peak. Is a tactical rebound on the cards or more pain ahead? More »