The implementation of the Digital Market Act (DMA) in the European Union forced the Apple firm to authorizeinstalling third-party app storesfrom Safari, or from any browser. The integration of this new feature did not, however, happen without problems, since a duo of developers discovereda flaw in Safari, making users vulnerable. Sheonly applies to iPhone owners residing in the European Union, where the DMA is effective.
Nature of the fault
The bug found in Safariexposes ourClink_ID, a unique identifier of our device. This allows sites to relentlessly track us, even if privacy settings are set to tolerate no tracking. Furthermore, the Clink_IDis also exposed in private browsing.
Here is the publication that reports the problem, with an explanatory video in English, for those who are interested:
Translation :“PSA: Apple recently introduced a new URI scheme so EU iOS users can install marketplace apps from the browser. Safari runs the system insecurely, leaving users exposed to tracking.
This video shows how Safari and Brave handle the new system. Brave wins! »
PSA:#Applerecently introduced a new URI scheme so that#iOSusers in the#EUcan install marketplace apps from the browser.#Safarihandles the scheme insecurely leaving users exposed to tracking.
This video shows how Safari and Brave handle the new scheme.@Braveprevails!pic.twitter.com/4NUbTSQYxW— Musk 🇨🇦🇩🇪 (@mysk_co)April 26, 2024
No problem on Brave
The developers who discovered the anomaly also tested the third-party browser Brave, to see if it also exposed the Clink_ID, but this is not the case. They therefore adviseto use Braverather than Safari, for the moment.
Apple is undoubtedly expected to resolve this issue in the coming days or weeks, so there is no cause for alarm.To install AltStore safely, you can follow our tutorial.
i-nfo.fr - Official iPhon.fr app
By : Keleops AG
