Apple’s ‘incredibly private’ Safari users could still be tracked in Europe
[ad_1]
Apple’s latest clash with the EU has left European Safari users potentially vulnerable to web activity tracking.
Apple has a history of attempting to dodge EU regulations, even getting slapped with a €1.8 billion fine for streaming violations in March. Now, the company’s final cave-in to European antitrust rules by allowing third-party apps on iPhones has left users potentially vulnerable to web activity tracking.
Previously, Apple’s Safari has been touted as a private, safe way to browse. Now, however, as reported by The Register, developers Talal Haj Bakry and Tommy Mysk have uncovered that the way Apple has allowed third-party apps access leaves potential privacy gaps.
Essentially, when visited by Safari by iOS, any website can pin a chosen approved software marketplace with a unique identifier for every user. As users move from site to site, that information can be quietly disclosed to a third-party (aka non-Apple) app store. This tracking data can be user for targeted ads and other data-driven personalization.
Is there a real risk to Apple Safari users?
As it stands, this risk appears to only apply to iOS 17.4 users in the EU and there aren’t yet any reports of the privacy gap being exploited. However, the potential appears to be there.
“Our testing shows that Apple delivered this feature with catastrophic security and privacy flaws,” wrote Bakry and Mysk in an advisory published on April 28.
The major failings of Apple, according to the developer duo, is that: it fails to check the origin of the website, allowing for unsupervised tracking; it doesn’t validate the JSON Web Tokens, ‘opening the door’ for malicious targeting; and it lacks certificate pinning, offering room for an intermediary to access the communication.
iOS users in Europe are urged to use a different privacy-driven browser, such as Brave or DuckDuckGo, which both plug the gaps that Safari has left open in Europe.
Featured image: Unsplash
[ad_2]
Source_link
Post Publications || Join us on Whatsapp || Post Disclaimer
SEND A STORY: Do you have a story for us or need a promotion/advertisement? Submit them via our email admin@edulearnweb or Ghanaeducation.org
TELEGRAM PAGE >>> [JOIN]
DOWNLOAD OUR EDUCATION NEWS APP - MOBILE APP
JOIN OUR EDUCATION NEW GROUPS (WHATSAPP)
Join one of our Whatsapp/Telegram Groups for current Ghana Education Service News Updates:
JOIN ONLY ONE... THANKS
TELEGRAM PAGE >>> [JOIN]
Group 1 >>New Group> [JOIN]
Group 2 >>New Group> [JOIN]
TELEGRAM PAGE >>> [JOIN]
Only websites that give us a URL backlink can repost our content on their sites.
The information contained in this post is for general information purposes only. The information is provided by edulearnweb.com and while we endeavour to keep the information up to date and correct, we make no representations or warranties of any kind, express or implied, about the completeness, accuracy, reliability, suitability or availability with respect to the website or the information, products, services, or related graphics contained on the post for any purpose.
||About Us|| Contact Us