20 Jun MacOS “Quick Look” Feature Bug Leaks Data
Security researcher Wojciech Regula recently discovered that macOS’s “Quick Look” feature can expose a user’s files even if the drive has been encrypted.
Regula says that a snapshot of a previewed file’s contents and the full file path is taken and stored in an unprotected location on the computer’s hard drive. Regula adds that the snapshots remain even if the files themselves are deleted.
Digita Security chief research officer Patrick Wardle added that the flaw is triggered every time a folder is opened. He also offered a solution on his blog where he explains how to purge the Quick Look cache from the computer.