Shaun Nichols reports:
Spotlight, the desktop search engine for OS X computers, will ignore privacy settings in Apple’s Mail client when showing messages in its search results.
The programming booboo means pictures and possibly other files linked to in HTML emails will automatically show up even if you’ve told Apple’s supplied client to not load remote content.
This means tiny, transparent images hidden in messages by spammers and message-tracking software will be fetched, confirming that your email address is working and you’re able to pick up e-missives.
Read more on The Register.
MacRumors reports the flaw was first reported by German tech news site Heise and replicated in tests performed by IDG News Service.