Apple, 암호화된 macOS 이메일을 일반 텍스트로 저장한 Siri 버그를 수정할 예정

ment 11/9 '19 posted 뉴스 IT

• 이 취약점은 수요일에 게시된 Medium 블로그에서 Apple에 초점을 맞춘 IT 전문가인 Bob Gendler 의해 공유되었습니다.

• 젠들러는 macOS와 Siri가 사용자에게 정보를 제안하는 방법을 알아내려는 동안, Mail과 기타 응용 프로그램의 정보를 저장하는 macOS 데이터베이스 파일을 발견하고, Siri가 사용자에게 정보를 더 잘 제안하기 위해 사용한다고 말합니다.

• 왼쪽 원은 암호화된 이메일이며 Gendler의 컴퓨터는 읽을 수 없습니다. Gendler는 일반적으로 그렇게 할 수 있는 개인 키를 제거했다고 말합니다.

• IT 전문가 밥 젠들러 (Bob Gendler)는 수요일에 애플의 암호화된 이메일 기술이 생각만큼 암호화되지 않았다고 주장하는 블로그 게시물을 발표했습니다.

• Siri가 비활성화되고 암호화된 메시지를 읽을 수 있어야하는 개인 키가 제거된 경우에도 이러한 전자 메일은 여전히 동일한 방식으로 저장되었습니다.

Apple will fix macOS flaw exposing portions of encrypted emails [www.engadget.com]

Apple is fixing encrypted email on macOS because it’s not quite as encrypted as we thought [www.theverge.com]

Apple plans to fix Siri bug that stored encrypted macOS emails in plaintext [www.techspot.com]

Appleâ€™s Revised Privacy Page Provides More Per-App Detail [tidbits.com]

Apple Mail on macOS leaves parts of encrypted emails in plaintext [www.zdnet.com]

newest replies popular replies

Open Wiki - Feel free to edit it. -

11/9 '19 answered

macOS can store portions of some encrypted emails sent from Apple Mail as if they were unencrypted. The issue was first reported to Apple on July 29. macOS updates since haven't fixed it, but Apple tells The Verge it will address it in a future software update. https://t.co/Nk6ilMFbiN
— Jay Peters ? (@jaypeters) November 8, 2019

Apple Mail on macOS leaves parts of encrypted emails in plaintext

> Sierra to Catalina affected
> No official fix available
> Hacky hack hack countermeasures available
> Apple has known since Julyhttps://t.co/q5JqSIAIH3 pic.twitter.com/chrriOfuFa
— Catalin Cimpanu (@campuscodi) November 8, 2019

#cybersecurity by obscurity is never a good idea. In this case it is a disappointment but also a wake-up call for those who plan security policy. Encrypting storage should be default. https://t.co/aIHqNTAsd1
— Derek Mizak (@Derekmizak) November 8, 2019

Apple is fixing encrypted email on macOS because it’s not quite as encrypted as we thoughthttps://t.co/K78fm6SuUv pic.twitter.com/MsVRKqVuvD
— Geeman Yip (@GeemanYip) November 8, 2019

Apple is fixing encrypted email on macOS because it’s not quite as encrypted as we thoughthttps://t.co/CwdbUUOamG pic.twitter.com/ECVMXWeeIi
— The Verge (@verge) November 8, 2019

Apple is fixing encrypted email on macOS because it’s not quite as encrypted as we thought https://t.co/2AR3nbe74i pic.twitter.com/YHOtUWRV2i
— Eric Vanderburg (@evanderburg) November 8, 2019

Apple Mail on macOS leaves parts of encrypted emails in plaintext https://t.co/yKYdIeIYK8
— CYBER PANDA (@Panda_Lv0) November 8, 2019

Apple Mail on macOS leaves parts of encrypted emails in plaintext https://t.co/HcCDXys7cU by @campuscodi
— ZDNet (@ZDNet) November 8, 2019

permanent link

Open Wiki - Feel free to edit it. -

11/9 '19 answered

Apple is fixing encrypted email on macOS because it’s not quite as encrypted as we thought https://t.co/q6TKynSyfp
— Sandesh Rao (@sandeshr) November 8, 2019

? #Apple Mail on #macOS leaves parts of encrypted emails in plaintext#CyberSecurity #Privacy
⁦@Dahl_Consult⁩ ⁦@BillMew⁩ ⁦@archonsec⁩ ⁦@PVynckier⁩ ⁩ ⁦@digitalcloudgal⁩ ⁦@Fabriziobustama⁩ ⁦⁦⁦@robmay70⁩ https://t.co/iWHhD8XQRz
— Dʀ. Jᴏʜᴀɴɴᴇs Dʀᴏᴏɢʜᴀᴀɢ (@DrJDrooghaag) November 9, 2019

permanent link

Featured

Important Notice: Discontinuation of Our Wiki Service

Dear Valued Users,

We hope this message finds you well. We are writing to inform you of an important upcoming change to our services. After careful consideration and analysis, we have made the difficult decision to discontinue our wiki site, effective one month from 2024/04/30.

This was not an easy decision to make, as we understand the importance of the resources and community that have been built around our wiki. However, due to evolving market conditions and strategic realignments, we must redirect our resources and efforts towards other ventures that will allow us to serve you better in the future.

What This Means for You:

Access to Content: You will continue to have full access to all content on the wiki until the discontinuation date. We encourage you to save or migrate any content you wish to retain.
Final Date of Service: The wiki will become inaccessible starting 1st June 2024, after which all content will be permanently removed.

We are immensely grateful for the support and contributions of our user community throughout the years. The wiki is being retired, but our team will be back soon with new services and apps.

Thank you for being a part of our journey.

Warm regards,

editoy Inc.

Related

Featured