“completely, totally, fully — UNENCRYPTED — readable” emails.As elaborated, this issue mainly affects Apple Mail on macOS, where the glitch arises in how Siri and macOS suggest contacts to the users. Gendler was investigating this feature when he noticed a folder including numerous database files.
This led me to the process called suggestd, run by the system level LaunchAgent com.apple.suggestd, and the Suggestions folder in the user-level Library folder, which contains multiple files and some potentially important database files (.db files).These databases primarily contribute to suggesting contacts as they store information from Apple Mail and other apps.
Eventually, the researcher noticed that one such database file snippets.db stored encrypted emails in an entirely unencrypted form. This activity continued even with disabled Siri.
It means that anyone could view those messages, that should supposedly have been encrypted, without the need for any private key. Hence, the entire effort of sending encrypted emails goes in vain.
Consequently, the researcher considered this activity as an incident of information exposure. Also, he busted the myth that a disabled Siri stops data collection on macOS.
Likewise, he also found another database file, entities.db, storing other records, such as users’ names, contact numbers, and emails. It also stores phone numbers extracted from email messages and signatures, even when a user does not have stored the number on his device.
This issue specifically affects all recent macOS versions, Mojave, Catalina, Sierra, and High Sierra.
Though, according to The Verge, Apple has promised to fix the bug in a future software update.
Fortunately, the researcher has shared some ways through which the users can mitigate the bug.
Let us know your thoughts in the comments.