Apple released iOS 14.5.1 and other software updates in late April that brought important security fixes to WebKit, which is the engine behind Safari and other web browsers on iOS. However, security researchers point out that there is still an exploit in WebKit that is active even in the latest versions of iOS and macOS.

expand full story

Apple’s WebKit team today has released its full “Tracking Prevention Policy.” This policy is an outline of WebKit’s tracking efforts and details what types of tracking WebKit will prevent, countermeasures, and more.

expand full story

Back in 2014, the WebKit team at Apple released Speedometer, which it touted as “a benchmark for web app responsiveness.” Almost four years later, Apple today has announced Speedometer 2.0 with numerous improvements for developers…

expand full story

Today, the team behind Safari’s web browser engine, WebKit, have detailed how designers should be building sites for the iPhone X. The upcoming iPhone’s sensor housing, aka “notch,” has presented new challenges for designers and developers alike. This has left some implementing creative “solutions” for the problem. Having WebKit lay out some official guidelines for the iPhone X should help web developers around the globe.

expand full story

App developer Craig Hockenberry has published an article today titled “in-app browsers considered harmful” warning both devs and users of security issues related to apps that take advantage of the feature. “Would it surprise you to know that every one of those apps could eavesdrop on your typing? Even when it’s in a secure login screen with a password field?” expand full story

Apple today has released new versions of Safari for OS X Lion/Mountain Lion and OS X Mavericks that address security and WebKit issues. The Safari 6.1.6 update for the older versions of OS X and Safari 7.0.6 update for the latest OS X are available in Software Update on the Mac App Store. Here are the release notes from Apple’s support page:

expand full story

The code shows that this is a new addition for OS X 10.10 and iOS 8.

Slightly ahead of the keynote later today, Apple has pushed some of its new APIs for developers into the open-source channels. The class in question is a new view that appears to replace the current iOS and OS X WebKit implementations, which enables apps to show webpages and other content inline.

The new framework seems to indicate a focus on cross-platform API compatibility, between iOS and OS X. The leaked framework seems to be fully feature-compatible across platforms. This differs to the situation today, where developers must use the ‘WebView’ class for OS X and ‘UIWebView’ for iOS. This should help developers write more reusable code.

expand full story

<a href="http://www.pwn2own.com/photo-gallery/#prettyPhoto[]/13/">Pwn2Own</a>

The team took home a $40,000 bounty for their efforts on Safari, as well as a share in a $75,000 prize for co-engineering a zero-day Flash exploit. They say they will donate some of their winnings towards charities representing missing Malaysian Airplane passengers.

The group say that for Safari, they used two different exploit vectors. One vulnerability was a heap overflow in WebKit that enabled arbitrary code execution. The team then used this opening to use another exploit to bypass the application sandbox and run code as if it was user privileged.

expand full story

UPDATE [Monday, September 12, 2011 at 3:30pm ET]: Dolphin Browser HD for iPad just went live on the App Store.

Most Android users are quite familiar with the third-party Dolphin Browser app, which has been downloaded over 9 million times and according to TechCrunch just raised $10 million from Sequoia Capital. It appears some of that investment will go towards the company’s efforts on iOS devices as well, as an official iOS version of the browser has just popped up in the App Store.

The iOS version brings over the majority of features that have made Dolphin so popular among Android users. Among them is highly customizable gestures, built-in translations, dock-like sidebar for accessing bookmarks, speed dial, tabbed browsing, and more. Don’t be fooled, however, Dolphin is still based on Apple’s own WebKit, much the same as the default Safari app, all other third-party browsers on the App Store, and the majority of browsers in the smartphone industry. It does have some competitors such as Opera and a handful of smaller players like SkyFire who are starting to gain traction and steadily improving their iOS offerings. expand full story

RIM has filed an ‘opposition action’ (via Patently Apple) in Canada against Apple’s trademark application for ‘WebKit’, the rendering platform based on KHTML that Apple help create before making open-source. The move grants RIM more time to build their case before a November 22, 2011 deadline.

Apple originally filed the trademark application in May of 2010 which, while getting a little bit of media attention, kind of flew under the radar of most. After all, WebKit has been made open-source.. so trademark or no trademark this shouldn’t affect Google, RIM, and all other platforms currently relying on WebKit in their browsers. Right?

If Apple were granted the trademark, it would mean other companies wouldn’t be able to associate the “WebKit” name with their products. Something that could potentially become more valuable if the WebKit name was marketed more prominently as a feature of future devices. Perhaps if Apple branded “WebKit” as a feature or technology in future products, other companies inability to do so would give Apple an advantage. Apple’s trademark application asserts the company’s rights to the name based on a “screenshot of Applicant’s website [WebKit Nightly Builds page] showing use of mark in connection with download of Applicant’s software”. expand full story

Adobe today released its “Flash for HTML5” web design tool Edge into Beta.

Adobe® Edge is a new web motion and interaction design tool that allows designers to bring animated content to websites, using web standards like HTML5, JavaScript, and CSS3.

This version of Edge focuses primarily on adding rich motion design to new or existing HTML projects, that runs beautifully on devices and desktops.

• Create new compositions with Edge’s drawing and text tools.
• Import popular web graphics such as SVG, PNG, JPG or GIF files.
• Easily choreograph animation with the timeline editor. Animate position, size, color, shape, rotation and more at the property level.
• Energize existing HTML files with motion, while preserving the integrity of CSS-based HTML layouts.
• Copy and paste transitions, invert them, and choose from over 25 built-in easing effects for added creativity.

Two example videos and feature breakdown below (Via The Loop): expand full story

A BGR Source has the 4.3.2 update and it appears to fix those Verizon iPad 2 issues that have 3G connections freezing. The update…

will fix the issues we’ve been hearing about with some Verizon iPad 2 models. Additionally, the new update is said to contain a fix for FaceTime in addition to security fixes for things like WebKit vulnerabilities and other minor changes.

It isn’t certain yet if this update is for Verizon iPhone 4s but that’s a bit …due as well. expand full story

According to a Blaze study stemming from 45,000 Android and iOS tests, the Android browser on average loads web pages 52 percent faster than mobile Safari. The results are inconclusive, however, because it’s unclear whether Blaze’s measurements take into account the new Nitro JavaScript engine that comes with iOS 4.3. The report was completed before this complaint was made public and Blaze is arguing that the lack of Nitro boost can “slightly” skew the results given that “JavaScript only accounts for a small percentage of the total load time.”

expand full story

Just like the previous iOS device launch days, today’s iPad 2 launch is spawning reports of some minor issues.  We’re getting some images of the yellow tint we saw last year.

Reader N. Peach sent this in. In all likelyiehood they yellow will dissipate just like last year’s issues as the glue from the factory dries.  Another reader’s is below: expand full story

The debate about Flash on iOS devices rarely makes headlines these days, but it’s far from being over. You can see it in an increasing number of apps from third-parties that aim to solve this nasty issue once and for all. While the vast majority of solutions only tackle Flash videos, only a few iOS apps are capable of rendering other content types delivered through Flash, like games and interactive apps.

Enter iSwifter, a new iPad app that claims to stream any Flash content. expand full story