Articles about safari

phishing_648

Safari URL-spoofing vuln reveals how fanbois can be led astray

A recently published exploit for the Safari browser demonstrates a URL spoofing mechanism which might convince users they are visiting a legitimate website, when they are actually visiting another site which may be phishing their details. Deusen researchers have disclosed a vulnerability which may be exploited by hackers to …

Apple swats Webkit bugs that bit it on Safari

Apple has update its Safari browser to quash three Webkit-derived bugs. One of the bugs, CVE-2015-1155 , meant “ Visiting a maliciously crafted website may compromise user information on the filesystem,” thanks to “A state management issue … that allowed unprivileged origins to access contents on the filesystem.” CVE-2015- …
Still from the movie Zoolander: Derek and a fellow model try to get the 'files' out of the Mac by smashing it to pieces. copyright Paramount Pictures

'If people can encrypt their cell phones, what's stopping them encrypting their PCs?'

QuoTW This week NASA showed off its plans to lasso an asteroid, researchers mourned over a bug-riddled Chrome browser, and RSA banned buxom booth babes. Here are some, er, titillating quotes from the week: Fadi Chehade, president and CEO of ICANN, did not mince his words when discussing the committee behind the IANA body. He had …
Shaun Nichols, 29 Mar 2015

Appeal court bombshell: Google must face British justice for 'Safari spying'

Apple Safari-using Brits, who claim they were tracked by Google's adbots without permission, can sue Google in the UK, the Court of Appeal of England and Wales has ruled. "This is a David and Goliath victory," said Marc Bradshaw, one of three people taking Google, a powerful advertising giant based in Mountain View, California …
Iain Thomson, 27 Mar 2015
Office Space

Apple: Those security holes we fixed last week? You're going to need to repatch

Apple has released a follow-up to last week's security update after finding a pair of flaws that are still vulnerable on patched systems. The Cupertino giant said that the 2015-003 update would address two flaws; a man-in-the-middle vulnerability and type confusion error in OS X Yosemite (10.10.2). Both of the flaws, CVE-2015 …
Shaun Nichols, 20 Mar 2015

Let's get patchin' now, everybody's watchin' how, baby fix Safari with me

Apple has pushed out an largish update for security flaws in its Safari browser. The Cupertino giant said that the Safari 8.0.4, 7.1.4 and 6.2.4 patch would address 17 CVE-listed vulnerabilities in the browser. The collective update, which patches the newest version of Safari along with older copies on legacy OS X versions, …
Shaun Nichols, 18 Mar 2015
Picard Facepalm

Apple Safari update BORKED private browsing

At some point between Version 6.2.2 and Version 8.0.3, Apple has accidentally jettisoned private browsing in Safari. As described by Macissues, users of recent Safari versions on the newest flavours of OSX are finding that so-called “private” URLs are turning up in the SQLite database that stores Favicons. In other words, if …
Microsoft-themed Monopoly board

Microsoft kills its Euro pane in the a**: The 'would you prefer Chrome?' window

Fresh Windows PCs in Europe will no longer offer to install Google Chrome and other web browsers rivaling Internet Explorer. That change, quietly announced on a Microsoft support website, marks the end of a European Commission-mandated period during which users had to be offered a choice in web browser when they installed …
Shaun Nichols, 18 Dec 2014

Google flushes out users of old browsers by serving up CLUNKY, AGED version of search

Google is attempting to shunt users away from old browsers by intentionally serving up a stale version of the ad giant's search homepage to those holdouts. The tactic appears to be falling in line with Mountain View's policy on its other Google properties, such as Gmail, which the company declines to fully support on aged …
Kelly Fiveash, 31 Aug 2014

What's in your toolbox? Why the browser wars are so last decade

Feature Desktop browsers have reached a point where there isn't a huge amount of daylight between them. Google Chrome, Mozilla Firefox and Opera are all on a pretty even playing field when it comes to features and speed. Safari and Internet Explorer lag a little bit when it comes to the bleeding edge of web standards because they …

Apple ships security fixes for iOS, OS X, Safari ... basically EVERYTHING

Apple on Monday shipped new versions of its operating systems, its web browser, and Apple TV firmware – with each update a minor release aimed at fixing bugs and closing security vulnerabilities. The latest release of OS X Mavericks, version 10.9.4, addresses a total of 19 vulnerabilities in a variety of OS subsystems, ranging …
Neil McAllister, 30 Jun 2014

Patch iOS, OS X now: PDFs, JPEGs, URLs, web pages can pwn your kit

Apple has released updates to its iOS and OS X operating systems that address serious security flaws. The company said the iOS 7.1.1 upgrade will include, as well as some stability updates, fixes for 19 security flaws. One of those vulnerabilities is a "triple handshake" error in iOS SecureTransport – which is part of the OS …
Shaun Nichols, 22 Apr 2014
Bondi Blue Rev. A iMac - logo

What took you so long Apple? 26 remote exec bugs die in OS X Safari

Apple has fixed 27 vulnerabilities in its Safari web browser for OS X computers, 18 of which were uncovered by Google's Chrome Security Team. All but one of the flaws allow miscreants to execute arbitrary code on victims' computers. The iPhone giant said its Safari 7.0.3 and 6.1.3 update will close the holes, which were found …
Shaun Nichols, 2 Apr 2014
iTunes 11 : iTunes Music Store

Apple punts patches for holes in Pages and OS X, Windows iTunes

Apple has issued updates to squash vulnerabilities in the OS X and Windows versions of iTunes and the word-processor app Pages. The iTunes 11.1.4 update will also patch security bugs in the Safari application and in underlying software such as the WebKit browser engine and a pair of library components. Users running iTunes on …
Shaun Nichols, 25 Jan 2014
cookies_eyes_privacy evercookies flash cookies

High Court derails Google defence in Safari browser stalker cookie brouhaha

The High Court in London, England, today rejected Google's claim that the company is not subject to UK data protection laws. The advertising giant – sued by Brits who allege the company invaded their privacy – tried to argue that Blighty's courts have "no jurisdiction" over it. But the High Court disagreed, and now Google will …
Kelly Fiveash, 16 Jan 2014
Rotten apple

Old Apple Safaris leave IDs and passwords for scavengers to peck

The fun folks at Kaspersky Labs' Securelist blog have found something nasty in Apple's Safari Browser, which they say lists user IDs and passwords in plaintext. Detailed here, the problem derives from Safari's retention of browser history as applied in the “Reopen All Windows from Last Session” feature that enables users to …
Simon Sharwood, 16 Dec 2013

Google coughs up $17m to end Safari STALKER COOKIE brouhaha

Google has settled its US legal woes over allowing third-party tracking of Safari users without their knowledge and consent for the relatively paltry amount of $17m, to be shared among 37 states and the District of Columbia – aka Washington DC. The settlement [PDF] states that between June 1, 2011, and February 15, 2012 Google …
Iain Thomson, 19 Nov 2013

Apple scrambles to fix buggy Mavericks apps

Apple is readying a spate of updates to a number of apps that shipped with its latest version of OS X, Mavericks, which launched on October 22 at the low, low price of gratis. According to sources speaking with 9to5Mac, the updates will be to iBooks, Safari, and the Remote Desktop client, and were seeded to Apple employees on …
Rik Myslewski, 4 Nov 2013

Create a news alert about safari, or find more stories about safari.

Biting the hand that feeds IT © 1998–2017