Apple’s Safari 15 browser, essentially now, is a treasure trove of private data for dark web hackers. This bit of crucial information revealed recently by cyber security analysts highlights the browser’s problem. The report revealed that the popular browser contains a malicious bug.
Researchers tracking the new development discovered that Safari 15 browser’s bug could eventually reveal users’ browsing history, and even more critical information such as their identity.
The potential leak, if deep web hackers infiltrate the network system, could land Apple in deep trouble with users’ identities being stolen and sold on dark web markets. However, Apple engineers have quickly addressed the issue after the report revealed the critical bug. The tech giant reported that a patch is being created that users can utilize to fix the problem.
Meanwhile, Apple issued a warning to all Safari 15 browser users stating that until the patch becomes available, they should use caution when accessing Internet sites. The company warned that when using the Safari 15 browser, users should limit their browsing to only websites that they thrust. Ideally, the best precaution for users is to limit their usage of the Safari 15 browser.
The Apple browser vulnerability documented by FingerprintJS analytic researchers revealed the information in a report titled Safari 15 Browser Bug Exposing User Data.
Specifically, the report revealed that the vulnerability that affects Safari 15 users’ privacy exists in the implementation of the browser’s IndexedDB API. What’s more, is that if dark web hackers were able to exploit the reported bug, they could hit a massive payday with websites that track online activities. Above all, users’ identities could be exposed to criminal hackers.
Apple’s Safari 15 violation resulted from the company’s same-origin policy. Consequently, the leakage of critical database information could occur in the same session when several websites remain open in different tabs. As reported by the research analysts, every interaction of a website with the database caused a domino effect. In that empty or new database is cloned with an identical name, thus creating clones of other active tabs, frames, and windows in the current browser session.
Notably, with all web browsers, the open tabs and windows utilize the same session. However, that only occurs if the user uses a single profile. Thus, the issue is avoidable if the user switches between multiple profiles. Google’s Chrome is one such browser that gives users the option to browse in a private window for every session.