Jeremiah Grossman has discovered and explained a potentially significant security flaw in Safari 4 and 5. In essence, if you have the AutoFill option "Using info from my Address Book card" enabled, a malicious Web site can extract your name, company, city, state, country, and email address without your knowledge. For the moment, we recommend turning off that option in Safari's AutoFill preference pane. Apple told the New York Times (though not Grossman, who reported the bug) that they are "aware of the issue and are working on a fix." follow link
Set Time Zone Automatically in Snow Leopard
Frequent travelers may be interested to know that in Snow Leopard your time zone can now be set automatically by bringing up the Date & Time preference pane, clicking the Time Zone view, and selecting Set Time Zone Automatically. A progress spinner appears while Snow Leopard sends off information about the Wi-Fi signals in your vicinity and receives location data back.
- ExtraBITS for 26 July 2010 (26 Jul 10)
Safari Reveals Personal Info Via Auto-Fill