New iLeakage attack steals emails, passwords from Apple Safari
Academic researchers created a new speculative side-channel attack they named iLeakage that works on all recent Apple devices and can extract sensitive information from the Safari web browser.
See also
'iLeakage' Flaw Can Prompt Apple's Safari to Expose Passwords, Sensitive Data
Security researchers uncover a way to siphon information from a Safari browser window by exploiting a 'speculative execution' flaw in Apple's Arm-based chips.