Security News > 2023 > October > Apple Vulnerability Can Expose iOS and macOS Passwords, Safari Browsing History

Apple Vulnerability Can Expose iOS and macOS Passwords, Safari Browsing History
2023-10-27 19:24

The vulnerability, which the researchers named iLeakage, enables threat actors to read Gmail messages, reveal passwords and uncover other personal information.

The iLeakage vulnerability has not yet been exploited in the wild as of October 27.

ILeakage is important to know about because of its novel approach and because the number of devices potentially open to exploitation through iLeakage is so high.

Apple has enabled a mitigation for iLeakage in macOS Ventura 13.0 and newer releases, but it takes some work to find it.

To activate the mitigation, follow the instructions posted on the iLeakage site under "How can I defend against iLeakage?" to access Safari's debugging menu.

iLeakage can be hard to trace because it doesn't appear in the system's log files, the researchers said; instead, iLeakage resides entirely within Safari.


News URL

https://www.techrepublic.com/article/apple-ios-ileakage/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Apple 72 238 1567 2279 265 4349