Nieuws, feedback en meer > Afgesloten draadjes
Safari 15 lekt websurfinformatie
(1/1)
puk1980:
https://fingerprintjs.com/blog/indexeddb-api-browser-vulnerability-safari-15/
https://safarileaks.com/
Discussie op HN, HN
boiing:
Niet zo fraai, Apple :sad:.
--- Citaat ---Why is this leak bad?
The fact that database names leak across different origins is an obvious privacy violation. It lets arbitrary websites learn what websites the user visits in different tabs or windows. This is possible because database names are typically unique and website-specific. Moreover, we observed that in some cases, websites use unique user-specific identifiers in database names. This means that authenticated users can be uniquely and precisely identified. Some popular examples would be YouTube, Google Calendar, or Google Keep.
--- Einde van citaat ---
het ModeratorTeam:
Hierover is inmiddels dit nieuwsbericht (met naamsvermelding), daarom hier een slotje.
Navigatie
[0] Berichtenindex
Naar de volledige versie