Safari exploit

Martin Bajanik, a software engineer at the browser fingerprinting-as-a-service platform FingerprintJS, recently shared details on a bug in Safari 15 that can potentially leak users' browsing activity to all of the websites open in the various browser frames, windows, and tabs in a single browsing session. https://youtu.be/Z7dPeGpCl8s IndexedDB is a browser API for client-side storage designed...

The Keen Team, a group of Chinese researchers, exploited a critical WebKit bug in Safari allowing them to view and take private data, using Safari on an iPhone. Just over one month after the vulnerability was found, Apple has shipped an update to patch the bug. The patch, which fixes nine security flaws, is available...

Participants in the second edition of HP-sponsored Mobile Pwn2Own have highlighted two mobile Safari vulnerabilities in iOS version 7.0.3 and iOS 6.1.4. The crack, which granted access to a targeted user's Facebook account and a photo stored on an iDevice, was demonstrated on November 13, 2013, at the PacSec Applied Security Conference in Tokyo, Japan....