Facebook Plunges Again
Tumblr 101: Tips And Tricks To Get Started
Safari's AutoFill feature can reveal your personal info, says security expert
Most people don't put things like credit cards numbers or Social Security numbers in their Address Book entries -- why would you? -- but your name, address and phone number are probably still there from the first time you registered your computer with Apple. Windows Safari users aren't entirely exempt from this exploit, either. Even though there's no Address Book on Windows, any personal info you put directly into Safari's AutoFill is still at risk.
Yikes, Apple! I expect to see a security update for Safari in the coming days. Until then, I'll use a more secure browser, like ... well, anything except Firefox, according to one firm.
[via TUAW]
Comments
4
Subscribe to commentsHoward PearceJul 22nd 2010 3:14PM
Use Opera :D
Dan LarsonJul 22nd 2010 4:37PM
I've been a Firefox user for as long as I've had a choice, so your last line made me curious. It's a nice, edgy sting to end on, I'll give you that, but it's hardly an accurate representation of the facts. From the very document you linked:
"The number of vulnerabilities in a given product is not necessarily equal to the overall security of the product. It is important to consider that vendors have different policies for assigning CVEs and that the numbers doesn’t reflect the rating of the vulnerabilities, the type of vulnerabilities, type of coding errors, ability to respond to the reports, and may other factors which may be relevant in a proper comparison."
Also, as for "anything except Firefox", you fail to mention that, while Firefox is first on the list with 96 vulnerabilities identified over the period of the study, Safari is right behind it with 84, and Google Chrome is fourth on the list with 70.
Looks like Howard is right - if you want to base your browser choice on the unweighted results of this study, then Opera is your option.
Jay HathawayJul 22nd 2010 4:40PM
Dan, I agree with everything you're saying. I probably could have used a little more nuance there. Also, thanks for the comment! I feel good about linking a study when people actually click through and analyze it for themselves.
Dan LarsonJul 22nd 2010 6:34PM
I've had quite a day, and upon re-reading my comment, I think my tone may have come across a bit more harshly than I had planned. For that I apologize. This is, after all, a blog, so I certainly don't begrudge you the occasional stinger.
I realize you have a more tech-y audience, but I don't know how many readers here haven't already made their own browser choice. My only concern was that you may have been affecting someone's choice with a cleverly packaged fraction of the information. Since it was levied against my particular browser, I was inclined to defend it.