Airmail issues fix for security flaw that could let hackers read your email

Airmail has issued an update today to patch a vulnerability that security researchers said could let malicious third parties access email databases and read a user's messages.

Security consulting firm Versprite outlined the issue in a blog post this morning, noting how Airmail 3 uses both a custom URL scheme and a so-called "deterministic" file system location for email messages for any given account. Using those two pieces of information, a hacker could theoretically retrieve every one of a user's messages through a phishing scheme that relies on that custom URL scheme.

Airmail told The Verge that it's already updated the app in the Mac App store and through its direct download beta program to address the issue, calling it a "very...

Continue reading…



via The Verge - Tech Posts https://ift.tt/2w6HpsR
RSS Feed

If New feed item from http://www.theverge.com/tech/rss/index.xml, t

IFTTT

Comments

Popular posts from this blog

Evernote cuts staff as user growth stalls

The best air conditioner

We won't see a 'universal' vape oil cartridge anytime soon