Skip to main content
  1. Home
  2. Computing
  3. Apple

Critical Mac update fixes Safari bug that leaks user data

Caleb Clark
By

A nasty bug in Safari has been discovered, and Apple has made available an update to MacOS Monterey and iOS that should solve the critical flaw.

The releases are MacOS Monterey 12.2 and iOS 15.3, both of which patch the vulnerability, which may have been exposing your browsing data. The release candidates are both currently available through GitHub, with official releases expected next week.

The new MacBook Pro seen from the side.

As originally reported by MacRumors, the issue revolves around WebKit and its implementation with IndexedDB JavaScript sites. Any websites using this API can see the names of other IndexedDB databases and any associated data.

Put simply, certain websites can see when you put personal info into other websites in the same browsing session. This problem is unique to Safari on Macs, iPads, and iPhones. Mobile versions of third-party browsers like Chrome are also affected because they rely on Apple’s WebKit.

WebKit is an open-source browser engine developed by Apple. All mobile browsers on iOS run on WebKit, but it is also used on devices such as Sony PlayStation consoles and Amazon Kindle e-readers. None of those devices, however, are affected by the bug.

The bug was discovered by a browser fingerprinting service called FingerprintJS. In response, they developed a website designed to show you user details about your Google account. The goal is to show whether your device is exposed.

According to MacRumors, “After updating to the ‌macOS Monterey‌ 12.2 RC and the iOS 15.3 RC, the demo website no longer detects any data.”

That shows the fix is working as intended. You can download the release candidate on GitHub, but there could be potentially other bugs. If you would rather wait, just make sure to update your device as soon it becomes available.

Apple responded rather quickly to the news of the bug. MacRumors first reported it on Sunday, January 16, and Apple had a fix available a few days later. Hopefully, the release candidates work well, and we will see an update available soon.

Editors' Recommendations

Video-editing app LumaFusion to get a Galaxy Tab S8 launch
A tablet featuring the LumaFusion video editing app.
Logitech’s new Mac accessories are customizable, functional, and undeniably pretty
Logitech MX Mechanical Mini Keyboard for Mac.
Nullmixer is a nasty, new Windows malware dropper
Windows shows a malware warning on a Dell laptop.
If the Mac gets a Dynamic Island, I’m not sure I want it
A mockup of a MacBook Pro with an iPhone-style Dynamic Island replacing the menu bar at the top of the screen.
Intel Innovation 2022: 13th-gen chips, slidable displays, and everything else
The stage at Intel Innovation keynote.
Best student laptop deals for October 2022
online web browser game list
Best Mac Mini deals for October 2022
Apple Mac Mini 2018
Best wireless keyboard deals for October 2022
keychron k2 review experience mechanical keyboard
Best Adobe Photoshop deals for October 2022
Close up of Adobe Photoshop app icon being chosen from among other Adobe apps on a laptop screen.
Best Alienware deals for October 2022
Alienware Aurora R12 gaming desktop displayed in front of a fantasy castle scene from a video game.
Best external hard drive deals for October 2022
A man uses a WD My Passport external hard drive alongside his laptop.
Best wireless mouse deals for October 2022
Logitech MX Master
The best all-in-one computers for 2022
Microsoft Surface Studio 2