A vulnerability in Safari allows threat actors to exploit the fullscreen API and perform BitM attacks, stealing user credentials without alerting the user. This issue is especially dangerous on Safari since the browser lacks clear visual warnings during fullscreen mode. #BitM #SafariVulnerability
Keypoints
- Attackers exploit the Fullscreen API to hide malicious windows on browsers.
- Safari fails to notify users when entering fullscreen mode, making attacks more convincing.
- BitM involves tricking users into logging into attacker-controlled browsers displaying fake login pages.
- Chromium-based browsers give warnings during fullscreen, but Safari does not, increasing risk for Safari users.
- SquareX reported the flaw to Apple, but received a response that no fix is planned currently.