Top
Begin typing your search above and press return to search.
exit_to_app
reservation and equality
access_time 2021-05-08T13:33:17+05:30
Who can save Congress from redundancy?
access_time 2021-05-10T13:19:13+05:30
Departure of a revolutionary
access_time 2021-05-12T11:01:26+05:30
Our front-line battle will continue, tirelessly
access_time 2021-05-11T10:59:10+05:30
jail
access_time 2021-05-10T16:23:32+05:30
DEEP READ
Who can save Congress from redundancy?
access_time 2021-05-10T13:19:13+05:30
Iran and the revival of JCPOA
access_time 2021-04-23T13:21:09+05:30
A model mosque in Gujarat
access_time 2021-04-12T17:13:34+05:30
Towards a digital emergency?
access_time 2021-02-27T14:50:41+05:30
The slaughter of democracy in Puducherry
access_time 2021-02-24T11:27:21+05:30
Populist Fascism
access_time 2021-01-31T17:19:29+05:30
exit_to_app
Homechevron_rightBusinesschevron_rightGoogle discovers...

Google discovers security flaws in Apple Safari browser

text_fields
bookmark_border
Google discovers security flaws in Apple Safari browser
cancel

San Francisco:  Google security researchers discovered several security flaws in a privacy software in Apple web browser Safari that could have helped third-party vendors track users' browsing habits.

According to a report in the Financial Times which cited a soon-to-be published paper from Google's 'Project Zero' team, the vulnerabilities were found in an anti-tracking feature known as 'Intelligent Tracking Prevention'.

Once disclosed by Google researchers to Apple in August last year, the Cupertino-based iPhone maker immediately patched the flaws.

Apple launched the 'Intelligent Tracking Prevention' tool in 2017 to, in fact, protect Safari users from being tracked around the web by advertisers and other third-party cookies.

According to Google researchers, the vulnerabilities left personal data of Safari users exposed. They also found a flaw that allowed hackers to "create a persistent fingerprint that will follow the user around the web".

Apple confirmed it patched the issues.

This is the third time Google researchers have found flaws in the Apple ecosystem.

In September, Apple slammed Google for creating a false impression about its iPhones being at hacking risk owing to security flaws that allegedly let several malicious websites break into its iOS operating system.

Researchers at 'Project Zero' team had discovered several hacked websites that allegedly used security flaws in iPhones to attack users who visited these websites -- compromising their personal files, messages, and real-time location data.

In a statement, Apple said the so-called sophisticated attack was narrowly focused, not a broad-based exploit of iPhones "en masse" as described.

According to Google, the websites delivered their malware indiscriminately and were operational for years.

According to the iPhone maker, "all evidence indicates that these website attacks were only operational for a brief period, roughly two months, not "'two years" as Google implies.

Google researchers also said they identified a vulnerability that accessed all the database files on the victim''s iPhone used by end-to-end encryption apps like WhatsApp, Telegram and iMessage.

Apple said that it fixed the vulnerabilities in question -- working extremely quickly to resolve the issue just 10 days after it learnt about it.

In July last year, the 'Project Zero' team found six critical flaws in Apple iMessage that can compromise the user's phone without even interacting with them. These security vulnerabilities fell into the 'interactionless' category.

Two members of 'Project Zero', Google's elite bug-hunting team, published details and demo proof-of-concept code for five of six 'interactionless' security bugs that impact the iOS operating system and can be exploited via the iMessage client.

All the six security bugs were patched with the iPhone maker's iOS 12.4 release.

Show Full Article
TAGS:
News Summary - Google discovers security flaws in Apple Safari browser
Next Story