Another Reason to Use Chrome Instead of Safari
By Daniel Miessler on July 23rd, 2010: Tagged as Apple | Google | Information Security
Right at the moment a Safari user visits a website, even if they’ve never been there before or entered any personal information, a malicious website can uncover their first name, last name, work place, city, state, and email address. Safari v4 & v5, with a combined market browser share of 4% (~83 million users), has a feature (Preferences > AutoFill > AutoFill web forms) enabled by default. Essentially we are hacking auto-complete functionality.
My friend Jeremiah Grossman found a nasty issue with Safari where it’s possible to harvest personal data from you when autofill is enabled.
**finger shake**
Chrome, man. Chrome. Even if this happened on Google’s browser it’d be fixed as the responsible disclosure email was hitting their server. With Apple we can see it’s quite different.