The developers have noteliminated the bug that has enabled Siri for several months already to view encrypted correspondence.
MacOS developers continue to ignore the serious bug that IB specialist Bob Gendler reported in July. The problem is that Apple Mail has been storing emails, which should be encrypted, in a plain text format in the snippets.db database.
The culprit is Siri that requested information from Apple Mail in order to be aware of the user's communications and provide him/her with necessary information. However, the developers, for some reason, have implemented data transfer to the smart assistant in a plain text format, even if the mail encryption feature is enabled. In addition, the bug has been up to date for several months now.
This vulnerability is a big issue for government officials, corporate employees, or, for example, journalists - for everyone who really needs to keep the correspondence encrypted.
Simply disabling Siri does not disable the vulnerability. What needs to be done: go to the Settings Section in Siri, find Suggestions and Privacy to Mail and disable viewing of encrypted messages in Apple Mail.
Share this with your friends!
Be the first to comment
Please log in to comment