Jan 182022
 January 18, 2022  Posted by  Breaches, Online

Benjamin Mayo reports:

A serious Safari bug disclosed in this blog post from FingerprintJS can disclose information about your recent browsing history and even some info of the logged-in Google account.

A bug in Safari’s IndexedDB implementation on Mac and iOS means that a website can see the names of databases for any domain, not just its own. The database names can then be used to extract identifying information from a lookup table. You can try it out for yourself with this live demo.

Read more at 9to5Mac.

Sorry, the comment form is closed at this time.