The Tor Venture has launched Tor Browser 10.0.18 to repair quite a few bugs, together with a vulnerability that enables websites to trace customers by

Tor Browser fixes vulnerability that tracks you utilizing put in apps

submited by
Style Pass
2021-06-22 08:30:28

The Tor Venture has launched Tor Browser 10.0.18 to repair quite a few bugs, together with a vulnerability that enables websites to trace customers by fingerprinting the purposes put in on their units.

In Might, JavaScript fingerprinting agency FingerprintJS disclosed a ‘scheme flooding’ vulnerability that enables the monitoring of customers throughout completely different browsers primarily based on the purposes put in on their gadget.

To trace customers, a monitoring profile is created for a consumer by trying to open numerous utility URL handlers, similar to zoommtg://, and checking if the browser launches a immediate, just like the one for Zoom beneath..

If the appliance’s immediate is displayed, it may be assumed that the appliance is put in on the gadget. By checking for quite a few URL handlers, the vulnerability can create an ID primarily based on the distinctive configuration of put in apps on the consumer’s gadget.

This ID can then be tracked throughout completely different browsers, together with Google Chrome, Edge, Tor Browser, Firefox, and Safari.

Leave a Comment