Apple Promises To Fix macOS Flaw That Left Encrypted Mail Messages Unprotected
Anil Singh - Nov 11, 2019
At least four of the latest macOS versions since Siera have experienced this security flaw.
- Apple Kills Original HomePod, Focusing On HomePod Mini
- iPhone 12 Color Is Fading Away Quickly And No One Knows Why
- Apple Sues Ex-Employee For Stealing Company’s Secrets To The Media
Apple is leading the way with its technology security advantages like never before. However, for Mac users, they are experiencing a macOS vulnerability. This tech gap is related to the fact that a portion of encrypted emails is not in high security. Bob Gentler, shared more clearly with Engadget that a database file which is in usage by Siri (snippets.db) had stored texts from supposedly unprotected emails, even if the private key in the emails were removed to prevent reading content inside. This problem can be more serious if hackers have access to the mail system for illegal purposes, such as extracting your confidential information.
Apple has found that at least four of the latest macOS versions since Siera have experienced this security flaw.
This gap looks quite complicated. To detect insecurity in mails systems, people have to use Mails and send out encrypted messages, as well as turn off whole-drive encryption of FileVault. Users won't have problems if they use the email from third-party providers, or use FileVault. Another way you can set up Mail removal from snippets.db is as follows: System Preferences> Siri> Siri Suggestions & Privacy> Mail. Here, you will turn off the option "learn from this app". For now, it is not clear when Apple will release a patch for the error.
However, in fact, it was not until November 5th when Gendler reported the problem, which is more than 4 months so far, that Apple has actually worked on the problem and come up with a solution. The explosion of information in emails has lasted quite a long time without any handling measures. Apple needs to quickly address the vulnerabilities, even though the likelihood of being hacked is still low at the present time.
Comments
Sort by Newest | Popular