Flaw: Are you a Safari User?

Saturday, July 24, 2010

A couple of days ago, it was revealed that a digital investigator discovered a potentially dangerous flaw to Safari browse, both versions 4 and 5.  The browser’s Auto-fill feature can be exploited by visited websites to acquire a user’s personal information including the address book. Auto-fill makes it easier for users to not type details each time but it is not a safe practice to do so. The use of a javascript code is all a malicious website needs to submit to other websites to commit fraud against the Safari user.

No need to panic though. All you have to do is turn-off that setting by unchecking the option, ASAP. Just go to Safari > System Preferences > AutoFill, and uncheck all the boxes. Keep it that way until Apple issues a security update.

Safari Auto Fill Settings