Skip to content

Apple prepares fix for Safari bug allowing websites to decipher your recent browsing activity

Over the weekend, we reported a bug in WebKit’s implementation of a JavaScript API called IndexedDB that can reveal your recent browsing history and even your identity, according to browser fingerprinting service FingerprintJS.

Apple has since prepared a fix for the bug, according to a Commit WebKit on GitHub, but the fix won’t be available to users until Apple releases macOS Monterey, iOS 15, and iPadOS 15 updates along with an updated version of Safari. Apple declined to comment when asked to provide a timeline for releasing a fix.

The bug allows any website that uses IndexedDB for client-side data storage to access the names of IndexedDB databases generated by other websites during a user’s browsing session. The bug could allow a website to track other websites the user visits in different tabs or windows, as database names are often specific to each website, and sometimes database names contain user-specific identifiers that could reveal a user’s identity.

FingerprintJS has a bug live demowhich affects newer versions of browsers using Apple’s open-source WebKit browser engine, including Safari 15 for macOS and Safari on all versions of iOS 15 and iPadOS 15. The bug also affects third-party browsers like Chrome and Edge on iOS 15 and iPadOS 15, as Apple requires all iPhone and iPad browsers to use WebKit.

The bug does not affect Safari 14 for macOS or any browser on iOS 14 and iPadOS 14, according to FingerprintJS, which has a blog post with more details.

Related stories

Apple releases iOS 15.3 and iPadOS 15.3 with fix for Safari bug leaking browsing activity

Apple today released iOS 15.3 and iPadOS 15.3, the third major updates to the iOS and iPadOS 15 operating systems that were released in September 2021. iOS and iPadOS 15.3 arrive nearly two weeks after the release of iOS and iPadOS 15.2.1, minor bug fix updates. iOS 15.3 and iPadOS 15.3 updates are free to download, and the software is available on all eligible devices live in…

macOS Monterey 12.2 and iOS 15.3 release candidates fix Safari bug that leaks browsing activity

The macOS Monterey 12.2 and iOS 15.3 release candidates released today appear to fix a Safari bug that could leak your recent browsing history and identity details to malicious entities. As shared by browser fingerprinting service FingerprintJS last week, there is an issue with WebKit’s implementation of the IndexedDB JavaScript API. Any website that uses…

Google will fix a bug that disables Safari AMP search results on iOS 15 devices

A bug in iOS 15 and iPadOS 15 prevents Safari from loading AMP links for Google search results, but the problem is unintentional and Google is working on a fix that should be released in the near future. Developer Jeff Johnson today published a blog post speculating whether Google intentionally disabled AMP links for Google search results in Safari on devices running iOS 15 (via…

DuckDuckGo is working on a privacy-focused desktop browser for Mac

A popular privacy-focused web browser, DuckDuckGo is developing a dedicated desktop browser that will be available on Mac, the company announced today in a year-end roundup post. DuckDuckGo already has a browser option available on mobile devices, and when it launches, the desktop browser will offer a similar experience. The DuckDuckGo desktop browser will have “robust privacy…

Apple releases minor iOS 15.2.1 and iPadOS 15.2.1 updates

Apple today released minor 15.2.1 updates for iPhone and iPad users, and the software comes a month after Apple released iOS 15.2 and iPadOS 15.2 with a host of improvements. The iOS 15.2.1 and iPadOS 15.2.1 update can be downloaded for free, and the software is available on all eligible devices live in the Settings app. To access the new software, go to Settings > General >…

Video: Browse the Web on Apple Watch with µBrowser

If you ever wanted to have a web browser on your wrist, now there’s an app for that. µBrowser is an app designed to let you type in a web address or run a search with DuckDuckGo so you can view websites on Apple Watch. Subscribe to the MacRumors YouTube channel for more videos. Available for $0.99 from the App Store, µBrowser offers a lightweight browsing experience that’s useful if you…

Apple releases macOS Monterey 12.2 with Safari vulnerability patch

Apple today released macOS Monterey 12.2, the second major update to the macOS Monterey Update launched in October. macOS Monterey 12.2 arrives more than a month after the release of update 12.1, which brought support for SharePlay. The ‌‌‌macOS Monterey 12.2‌‌ update can be downloaded on all eligible Macs using the Software Update section of System Preferences. Apple has also…

popular stories

iPhone 14 Pro rumored to feature 8GB of RAM, matching Galaxy S22

The iPhone 14 Pro will feature 8GB of RAM, the most memory ever offered in an iPhone, according to an unverified but plausible report from Asia. According to a post by the “yeux1122” account on the Korean Naver blog, the iPhone 14 Pro will pack 8GB of RAM. Citing supply chain sources, the post claims that the memory components for the iPhone 14 Pro have now been confirmed and added…

Clones of the popular ‘Wordle’ game-flooding app store, including one charging $30 a year [Updated]

If you’re a regular internet user, you’ve probably heard of the popular online daily guessing game Wordle, created by Josh Wardle. The game, which is completely free, was introduced last fall and has spread like wildfire. Wordle asks players to guess a five-letter word by identifying which letters are in the word and are located in the correct place. Players get six guesses per…

Apple officially obsoletes the first iPad with Lightning connector

Tuesday, February 15, 2022 1:50 a.m. PST by Sami Fathi

In addition to adding the iPhone 6 Plus to its list of vintage and obsolete products, Apple today also updated its list to officially consider the fourth-generation iPad released in 2012 as obsolete. The fourth-generation iPad was marked internally at Apple as obsolete in November, but it hadn’t updated its public listing to make it official until today. The fourth-generation iPad was announced in…

Google wants to turn your old Mac into a Chromebook with Chrome OS Flex

Google has announced early access to Chrome OS Flex, a method of replacing the operating system on older PCs and Macs “in minutes” to essentially turn them into Chromebooks. The company encourages individuals, schools and businesses to download Chrome OS Flex so they can “easily try out modern computing with cloud-based management” while extending the life of older devices, which …

Privacy Policy Designed using Magazine Hoot. Powered by WordPress.