Massive iPhone bug could leak your info to strangers as Apple tries to fix it

APPLE is working on fixing a recently discovered bug that could potentially expose iPhone users’ personal data.

A problem in the Safari browser that allows any website to track your internet activity and even reveal your identity without your permission.

Apple is working to fix a bug in their Safari web browser


Apple is working to fix a bug in their Safari web browserCredit: Rex

It affects all iOS web browsers for iPhone and iPad, as well as the California tech giant’s Safari 15 on Macs.

The issue was discovered by security experts from FingerprintJS and reported by MacRumours over the weekend.

Based on Apple engineers are currently working on an update to patch the exploit that will be released in the near future.

The update in progress was discovered in a WebKit commit on GitHub, one that helps developers store, manage, track, and control changes to their software.

On GitHub, a WebKit commit indicates that Apple engineers are working on a fix.

The fix is ​​said to not be available to users until Apple releases macOS Monterey, iOS 15, and iPadOS 15 updates with an updated version of Safari.

FingerprintJS Experts reported this bug to Apple in November 2021.

The issue may leak your recent internet browsing activity as well as reveal some personal details from your Google account.

It stems from a feature under the bonnet designed to store data in your browser from one place.

The so-called IndexedDB is supposed to follow the same origin policy, meaning that only the website generating certain data can access it.

For example, if you open your email account in one tab while the other tab is a crafty website, this feature will prevent bad guys from tampering with your emails.

But the researchers apparently found a flaw that prevented that defense mechanism from fully working.

This can allow hackers to snoop on specific details about your identity.

Experts highlight the danger with services like Google’s, as one login is used across YouTube, email, Google Calendar and more.

“This not only implies that untrusted or malicious websites can learn the user’s identity, but also allows the linking of many separate accounts used by the same user. “, FingerprintJS warns.

They tested the top 1,000 websites to see if they might be affected.

More than 30 websites use indexed databases which means that those who use them are at risk.

What can I do to prevent Safari errors?

Unfortunately, there’s not much you can do until Apple rolls out a fix.

The only real defense is to update your browser or operating system once the issue is resolved by Apple, the experts said.

Mac users can use an alternative web browser.

But since the problem occurs on all web browsers on iPhone and iPad, you will have to wait.

In the meantime, just be extra vigilant with the sites you use.

Fan-made video shows what the iPhone 14 will look like when it launches later this year

In other news, personalized smart gun, which can only be activated by verified users, may eventually be made available to US consumers this year.

Scientists are embarking on a mission to unravel the mystery behind dozens of creepy baby mummy was buried in an underground tomb in Sicily.

The police caught an Italian mafia henchman who was on the run for 20 years after discovering the fugitive on Google Maps.

And, one of the The best preserved fossils was found that confirmed that juvenile dinosaurs popped out of their shells like baby birds.

We pay for your stories! Do you have a story for The Sun Online Science & Technology team? Email us at the address Massive iPhone bug could leak your info to strangers as Apple tries to fix it

Fry Electronics Team

Fry is an automatic aggregator of the all world’s media. In each content, the hyperlink to the primary source is specified. All trademarks belong to their rightful owners, all materials to their authors. If you are the owner of the content and do not want us to publish your materials, please contact us by email – The content will be deleted within 24 hours.

Related Articles

Back to top button