Skip to content
TechBriefly
  • Tech
  • AI
  • Crypto
  • Business
  • Gaming
  • How to
  • About
    • About TechBriefly
    • Terms and Conditions
    • Privacy Policy
    • Contact Us
    • Languages ›
      • 中文 (Chinese)
      • Dansk
      • Deutsch
      • Español
      • English
      • Français
      • Nederlands
      • Italiano
      • 日本语 (Japanese)
      • 한국인 (Korean)
      • Norsk
      • Polski
      • Português
      • Pусский (Russian)
      • Suomalainen
      • Svenska
  • Tech
  • AI
  • Crypto
  • Business
  • Gaming
  • How to
  • About
    • About TechBriefly
    • Terms and Conditions
    • Privacy Policy
    • Contact Us
    • Languages
      • 中文 (Chinese)
      • Dansk
      • Deutsch
      • Español
      • English
      • Français
      • Nederlands
      • Italiano
      • 日本语 (Japanese)
      • 한국인 (Korean)
      • Norsk
      • Polski
      • Português
      • Pусский (Russian)
      • Suomalainen
      • Svenska
  • Home/Tech/Attention Safari users: This bug can leak your browsing history and personal identifiers

    Attention Safari users: This bug can leak your browsing history and personal identifiers

    Attention Safari users: This bug can leak your browsing history and personal identifiers
    Eray Eliaçık Eray Eliaçık · January 17, 2022, 10:02 ·2 min read

    According to findings from FingerprintJS, a browser fingerprinting and fraud detection service, a bug in Safari 15 may reveal your online activity and some personal information linked to your Google account (via 9to5Mac). The problem relates to Apple’s implementation of IndexedDB, an API that stores data on your browser.

    IndexedDB, like all Web databases, adheres to the same-origin policy, which means that one origin can’t interact with data generated on other origins. The same-origin policy prevents a malicious page from viewing and tampering with your email if you open your email account in one tab and then visit a harmful site in another.

    Attention Safari users: This bug can leak your browsing history and personal identifiers
    Attention Safari users: This bug can leak your browsing history and personal identifiers

    The Safari bug that exposes your Google User ID to other sites

    Apple’s implementation of the IndexedDB API in Safari 15, according to FingerprintJS, violates the same-origin policy. When a website interacts with a database in Safari, FingerprintJS claims that “a new (empty) database with the same name is created in all other active frames, tabs, and windows within the same browser session.”

    You Might Also Like
    Blizzard Entertainment marks 35 years of gaming history with special showcase events featuring updates for World of Warcraft, Overwatch, Hearthstone, and Diablo.
    Blizzard turns 35 with massive anniversary showcase and BlizzCon return
    27 January 2026
    Apple reportedly planning folding iPhone for 2025
    Apple reportedly planning folding iPhone for 2025
    19 June 2025
    Xiaomi POCO M3 specs
    Xiaomi launched POCO M3: specs, price and release date
    24 November 2020

    This indicates that other websites may view the names of other databases developed on other sites, which may contain information specific to your identity. FingerprintJS identifies websites that use your Google account, such as YouTube, Google Calendar, and Google Keep, among others. Because your Google User ID allows Google to access your publicly available data, like your profile image, the Safari vulnerability can expose it to other websites.

    This is a huge bug. On OSX, Safari users can (temporarily) switch to another browser to avoid their data leaking across origins. iOS users have no such choice, because Apple imposes a ban on other browser engines. https://t.co/aXdhDVIjTT

    — Jake Archibald (@jaffathecake) January 16, 2022

    SEE ALSO
    The Indian government warns Chrome users about a security issue

    FingerprintJS created a proof-of-concept demo you may evaluate if you have Safari 15 or higher on your Mac, iPhone, or iPad. The demonstration uses the browser’s IndexedDB flaw to identify the sites you’ve got open (or recently opened), and how sites that take advantage of the flaw can gather information from your Google User ID. It currently just detects 30 major sites that are impacted by the bug, such as Instagram, Netflix, Twitter, and Xbox , but it is likely to impact far more.

    Unfortunately, there isn’t much you can do about it because the bug affects Private Browsing mode in Safari as well. You may utilize a different browser on macOS, but all browsers are affected by Apple’s third-party browser engine ban on iOS. On November 28th, FingerprintJS reported the leak to the WebKit Bug Tracker, but there has yet to be an update to Safari.

    API Apple browser bug featured google account google calendar Google Keep How Instagram iOS iPad iPhone leak mac Netflix safari security Twitter vulnerability what Xbox YouTube
    Share:
    Eray Eliaçık
    Written by
    Eray Eliaçık

    Meet Eray, a tech enthusiast passionate about AI, crypto, gaming, and more. Eray is always looking into new developments, exploring unique topics, and keeping up with the latest trends in the industry.

    View all posts →

    Latest Posts

    1. 1
      Proton launches Lumo 2.0 with image generation and stronger privacy 30 June 2026
    2. 2
      Tata Electronics data breach exposes iPhone 18 Pro supplier details 30 June 2026
    3. 3
      OpenClaw launches AI agent apps for iOS and Android 30 June 2026
    4. 4
      Google expands free Gemini image generation to all US users 30 June 2026
    5. 5
      Samsung to unveil Galaxy Z Fold8 and Flip8 lineup on July 22 30 June 2026

    Popular Posts

    1. 1
      Beyond the single-model bottleneck: How OiiOii AI orchestrates Gemini, GPT Image 2, and Seedance 2.0 into an AI animation agent 25 views
    2. 2
      Ubisoft to close two studios and cut 380 jobs in major restructuring 66 views
    3. 3
      Google ends Nest speaker line as new $100 Home model debuts 37 views
    4. 4
      Rockstar sets $80 price for GTA 6, pre-orders open June 25 14 views
    5. 5
      Nvidia chip shortages fuel underground market surge in China 14 views

    Stay Updated

    Related Stories

    Tata Electronics data breach exposes iPhone 18 Pro supplier details
    Tech

    Tata Electronics data breach exposes iPhone 18 Pro supplier details

    Sensitive data from iPhone supplier Tata Electronics leaked online, exposing Apple manufacturing details and prompting a cybersecurity investigation.

    June 30, 2026, 17:38
    Samsung to unveil Galaxy Z Fold8 and Flip8 lineup on July 22
    Tech

    Samsung to unveil Galaxy Z Fold8 and Flip8 lineup on July 22

    Samsung’s upcoming Galaxy Z Fold8, Fold8 Ultra, and Flip8 are rumored to feature upgraded cameras ahead of their...

    June 30, 2026, 17:37
    Apple reportedly plans touchscreen MacBook before M7 chips arrive
    Tech

    Apple reportedly plans touchscreen MacBook before M7 chips arrive

    The later M7 versions are already in advanced testing and could arrive before the end of 2027.

    June 29, 2026, 13:56
    Nothing to launch Phone 4b on July 7 with Snapdragon 6 Gen 4 chipset
    Tech

    Nothing to launch Phone 4b on July 7 with Snapdragon 6 Gen 4 chipset

    Nothing confirms the Phone 4b launch on July 7, featuring a Snapdragon 6 Gen 4 chip, 8GB RAM,...

    June 26, 2026, 13:48
    TechBriefly
    © 2026 TechBriefly. All rights reserved. Pulseluxeup Investeringsplatform