Skip to main content
  1. Home
  2. Computing

Critical Mac update fixes Safari bug that leaks user data

Caleb Clark
By

A nasty bug in Safari has been discovered, and Apple has made available an update to MacOS Monterey and iOS that should solve the critical flaw.

The releases are MacOS Monterey 12.2 and iOS 15.3, both of which patch the vulnerability, which may have been exposing your browsing data. The release candidates are both currently available through GitHub, with official releases expected next week.

The new MacBook Pro seen from the side.

As originally reported by MacRumors, the issue revolves around WebKit and its implementation with IndexedDB JavaScript sites. Any websites using this API can see the names of other IndexedDB databases and any associated data.

Recommended Videos

Put simply, certain websites can see when you put personal info into other websites in the same browsing session. This problem is unique to Safari on Macs, iPads, and iPhones. Mobile versions of third-party browsers like Chrome are also affected because they rely on Apple’s WebKit.

WebKit is an open-source browser engine developed by Apple. All mobile browsers on iOS run on WebKit, but it is also used on devices such as Sony PlayStation consoles and Amazon Kindle e-readers. None of those devices, however, are affected by the bug.

The bug was discovered by a browser fingerprinting service called FingerprintJS. In response, they developed a website designed to show you user details about your Google account. The goal is to show whether your device is exposed.

According to MacRumors, “After updating to the ‌macOS Monterey‌ 12.2 RC and the iOS 15.3 RC, the demo website no longer detects any data.”

That shows the fix is working as intended. You can download the release candidate on GitHub, but there could be potentially other bugs. If you would rather wait, just make sure to update your device as soon it becomes available.

Apple responded rather quickly to the news of the bug. MacRumors first reported it on Sunday, January 16, and Apple had a fix available a few days later. Hopefully, the release candidates work well, and we will see an update available soon.

Editors' Recommendations

Topics
Caleb Clark
Caleb Clark
Caleb Clark is a full-time writer that primarily covers consumer tech and gaming. He also writes frequently on Medium about…
From click wheels to trackpads, these are the best Apple designs of all time
macbook air

This Saturday marks Apple’s 47th birthday as a company, and it’s fair to say the company has dreamed up some incredible designs over the years. Sure, it’s had a few design howlers too, but when it comes to consistency, the designers at Apple have more wins under their belt than anyone.

Looking back at the past 47 years, these are the physical pieces of tech design that captivated us most from some of its most beloved products and show just how deep Apple's design pedigree goes.
The iMac G3’s translucent case

Read more
This Mac malware can steal your credit card data in seconds
Apple's Craig Federighi speaking about macOS security at WWDC 2022.

Despite their reputation for security, Macs can still get viruses, and that’s just been proven by a malicious new Mac malware that can steal your credit card info and send it back to the attacker, ready to be exploited. It’s a reminder to be careful when opening apps from unknown sources.

The malware, dubbed MacStealer, was discovered by Uptycs, a threat research firm. It hoovers up a wide array of your personal data, including the iCloud Keychain password database, credit card data, cryptocurrency wallet credentials, browser cookies, documents, and more. That means there’s a lot that could be at risk if it gains a foothold on your Mac.

Read more
MacGPT: how to use ChatGPT on your Mac
The MacGPT app for macOS Monterey and Ventura.

Apple might not officially be in the AI space, but a developer has created a legitimate way to bring ChatGPT to macOS and make the chatbot accessible from your menu bar.

The aptly named MacGPT is an application developed by Jordi Bruin that allows you to install ChatGPT as a remote browser on your Mac desktop. The application has been available since the 2022 holiday season and has garnered over 370 ratings, many of which are five stars. MacGPT is currently free, however, Bruin accepts donations. Once out of beta, he will make MacGPT available at the App Store, where it will sell for $5.

Read more