Apple's 'incredibly private' Safari not so private in Europe
www.theregister.com
Infosec eggheads find iGiant left EU iOS 17 users open to being tracked around the web

Apple’s grudging accommodation of European antitrust rules by allowing third-party app stores on iPhones has left users of its Safari browser exposed to potential web activity tracking.

Developers Talal Haj Bakry and Tommy Mysk looked into the way Apple implemented the installation process for third-party software marketplaces on iOS with Safari, and concluded Cupertino’s approach is particularly shoddy.

    • Snot Flickerman@lemmy.blahaj.zoneEnglish
      19·
      6 months ago

      If you’d read the article, you’d have realized it’s specifically because of a bad implementation by Apple of their URI scheme for handling links.

      They’re literally suggesting users use Brave over Safari because it isn’t susceptible to cross-site scripting in the same way.

      They urge iOS users in Europe to use Brave rather than Safari because Brave’s implementation checks the origin of the website against the URL to prevent cross-site tracking.

      This is anything but Apple propaganda. It’s literally calling Apple out on a huge failure of their own design.