Collaborate Disseminate
Apple may care about your privacy but that doesn’t mean it gets it right all the time, especially when it comes to training its Siri AI assistant. Continue reading Apple to fix Siri bug that exposed parts of encrypted emails
A database in Apple’s MacOS stores encrypted email messages in a plain text format, according to a researcher who says he reported the problem to the company months ago. Bob Gendler, a Mac expert and an IT specialist at the National Institute of Standards and Technology, published a Medium post on Nov. 6 detailing how, if a customer sends encrypted emails via Apple Mail, an outsider could access some of the text. The bug is specific, and likely only affects a fraction of macOS users: Hackers would need to access specific Apple system files from a victim who sent an encrypted message from Apple Mail through a macOS without FileVault encryption. Gendler classified the issue as an “inadvertent information exposure.” The issue involves an Apple system file, snippets.db, that is storing text of emails without encryption (the files are meant to be protected with the S/MIME encryption protocol). Users do […]
The post An issue in Apple Mail means some ‘encrypted’ messages aren’t actually protected appeared first on CyberScoop.
Continue reading An issue in Apple Mail means some ‘encrypted’ messages aren’t actually protected