Skip to main content

Critical Mac update fixes Safari bug that leaks user data

A nasty bug in Safari has been discovered, and Apple has made available an update to MacOS Monterey and iOS that should solve the critical flaw.

The releases are MacOS Monterey 12.2 and iOS 15.3, both of which patch the vulnerability, which may have been exposing your browsing data. The release candidates are both currently available through GitHub, with official releases expected next week.

The new MacBook Pro seen from the side.
Luke Larsen / Digital Trends

As originally reported by MacRumors, the issue revolves around WebKit and its implementation with IndexedDB JavaScript sites. Any websites using this API can see the names of other IndexedDB databases and any associated data.

Recommended Videos

Put simply, certain websites can see when you put personal info into other websites in the same browsing session. This problem is unique to Safari on Macs, iPads, and iPhones. Mobile versions of third-party browsers like Chrome are also affected because they rely on Apple’s WebKit.

WebKit is an open-source browser engine developed by Apple. All mobile browsers on iOS run on WebKit, but it is also used on devices such as Sony PlayStation consoles and Amazon Kindle e-readers. None of those devices, however, are affected by the bug.

The bug was discovered by a browser fingerprinting service called FingerprintJS. In response, they developed a website designed to show you user details about your Google account. The goal is to show whether your device is exposed.

According to MacRumors, “After updating to the ‌macOS Monterey‌ 12.2 RC and the iOS 15.3 RC, the demo website no longer detects any data.”

That shows the fix is working as intended. You can download the release candidate on GitHub, but there could be potentially other bugs. If you would rather wait, just make sure to update your device as soon it becomes available.

Apple responded rather quickly to the news of the bug. MacRumors first reported it on Sunday, January 16, and Apple had a fix available a few days later. Hopefully, the release candidates work well, and we will see an update available soon.

Caleb Clark
Former Digital Trends Contributor
Caleb Clark is a full-time writer that primarily covers consumer tech and gaming. He also writes frequently on Medium about…
Apple needs to fix the basics for macOS 26, or let AI run the show
Background apps on M4 MacBook Air.

The Mac apps community is a wonderful place to find utilities that can supercharge your computing experience. Alfred, Raycast, AlDente, and Rectangle are some of the most highly recommended apps for macOS users these days. The open-source community has also produced a few utilities (and their forks) that I use on a daily basis. 

If you read between the lines, you'll notice that these apps fill a functional gap that Apple has yet to offer natively. On the other side of the computing ecosystem, Windows has served those perks for years. Will the next big software upgrade, macOS 26, finally give users an in-house fix? We’ll only get the answer at WWDC 2025 in just over a week from now. 

Read more
4 things we expect to see at WWDC 2025, and 2 we don’t
WWDC invite on a phone.

Apple’s next developers conference will kick off on June 9th, and as expected, some notable software announcements are on the horizon. The big reveals are expected to be iOS 19, macOS 16, iPadOS 19, watchOS 12, visionOS 3, and tvOS 19, continuing the company's tradition of announcing major software upgrades midway through the year. 

The stakes this year, however, are higher than expected. All eyes will be on Apple and what it has to say about its AI approach, after having missed the early momentum against Google’s Android and some well-documented missteps with Apple Intelligence. 

Read more
How to keep your Apple devices safe from AirPlay attacks
Apple AirPlay streaming to another device.

Apple’s approach to building new features has always been rooted in safety and seamless convenience. Take, for example, AirPlay, a wireless standard created by the company that allows users to stream audio and video from one device to another.

AirPlay works not just across Apple devices, but also on TVs and speakers cleared by the company to offer the wireless streaming facility. That also makes it a ripe target for attacks, and it seems there are, in fact, vulnerabilities in the wireless lanes that could allow bad actors to seed malware and infect more connected devices. 

Read more