Jeremiah Grossman has discovered and explained a potentially significant security flaw in Safari 4 and 5. In essence, if you have the AutoFill option "Using info from my Address Book card" enabled, a malicious Web site can extract your name, company, city, state, country, and email address without your knowledge. For the moment, we recommend turning off that option in Safari's AutoFill preference pane. Apple told the New York Times (though not Grossman, who reported the bug) that they are "aware of the issue and are working on a fix." follow link
Adding Links in Snow Leopard's Mail
Apple Mail in Snow Leopard now has a Command-key shortcut for adding a link to an email.
If you use plain-text email, this will not be helpful at all, but if you send styled email, it's a nice shortcut for adding URLs to your email messages. Simply select the word(s) you want to make into a link, press Command-K, and enter the URL to build into the link.
- ExtraBITS for 26 July 2010 (26 Jul 10)
Safari Reveals Personal Info Via Auto-Fill