Human beings might enjoy a great set of privileges throughout their lives, but being allowed to construct our own approach is beyond special. This particular privilege has guided us towards achievements that are fairly staggered across the spectrum, thus setting the stage for a more collective brand of growth. Now, when you have such a dynamic running the show, you don’t just get to experience some direct milestones here and there. Instead, you must also strap in for by-products that are effectively bigger than what they seem at first. If we are to bring an example here, hardly any other by-product would make the cut like technology. While technology did initially appear on the scene as just a quicker and more efficient way of doing things, it was actually there to transform the way we functioned. Soon enough, it had control over every little aspect related to our lives, and maybe for good reason. I mean, what other creation can match up with technology in terms of pure ability? However, our sheer focus on this very element will end up costing the world big time. You see, after technology started delivering unprecedented results on a consistent basis, we completely forgot that despite the groundbreaking nature, the creation was still a human brainchild, and like us, it is also riddled with imperfections. Unfortunately, we’ll get the reality check through numerous cases, which touch upon the vulnerability of our devices. In fact, a recent FingerprintJS report says we are dangerously near to experiencing a similar reminder again.
According to FingerprintJS report, a bug in Safari 15 can potentially leak your browsing activity. Furthermore, it can also go ahead and expose some personal information attached to your Google account. The claim delves deep into how the issue is basically a result of Apple’s IndexedDB implementation. As an API that stores data on your browser, IndexedDB is supposed to follow the universal same-origin policy, but the way Apple has integrated it within Safari 15 is a clear violation of the framework. It can now provide any website with details regarding the databases you have created on an entirely different site. The charade goes into motion once Safari 15 data catalogue of interactions with every website ropes in active frames, tabs, windows, from the shared browsing session to house separately-created databases bearing the same name as the original ones. So far, the bug is found to affect security on over 30 platforms, including Netflix, Twitter, Xbox, and many more.
FingerprintJS reported the bug to Webkit Bug Tracker on November 28th 2021, but Apple still hasn’t rolled out an update.