The Apple Mail app available on
macOS stores leaves a portion of users encrypted emails in plaintext in a database called snippets . db.
The Apple expert Bob Gendler discovered that the Apple Mail app available on
The issue is yet to be fixed and even if Apple plans to address it, the company did not provide a timeline.
“But if you send encrypted emails from Apple Mail, there’s currently a way to read some of the text of those emails as if they were unencrypted —
“Apple tells The Verge it’s aware of the issue and says it will address it in a future software update. The company also says that only portions of emails are stored. But the fact that Apple
The expert discovered the issue while he was investigating how
“This led me to the process called , run by the system level LaunchAgent apple, and the Suggestions folder in the
Gendler explained that Siri uses a process named “
The expert discovered that if the Apple Mail is used to send and receive encrypted email, Siri would collect a
“Let me say that again… The snippets
“This is a big deal. This is a big deal for governments, corporations and regular people who use encrypted email and expect the contents to be protected”
Unfortunately, disabling Siri will not solve the issue because the ‘
The expert proposed the following three ways to disable these processes from scraping messages from Apple Mail:
- Manually click the settings, go to System Preferences → Siri →Siri Suggestions & Privacy →Uncheck the boxes
- Run the following command in Terminal to turn off Siri from learning from Apple Mail: defaults write
com.apple.suggestionsSiriCanLearnFromAppBlacklist -array com.apple.mail
- Deploy a System-Level (for all users) configuration profile to turn off Siri from learning from Apple Mail.
The third solution is permanent, it will disable
Gendler also suggests to manually remove the