Skip to main content
Login
institutional access

You are connecting from
Lake Geneva Public Library,
please login or register to take advantage of your institution's Ground News Plan.

Published loading...Updated

Microsoft Throws Spotlight on Apple Bug Patched in March

NO LOC, JUL 28 – Microsoft credited Apple for fixing a macOS Spotlight vulnerability that could leak sensitive Apple Intelligence data including geolocation and media metadata, urging immediate updates to protect users.

  • Amid routine scans, Microsoft Threat Intelligence announced Monday it discovered 'Sploitlight', a macOS Spotlight vulnerability tracked as CVE-2025-31199 that bypasses privacy protections.
  • Amid routine cross-platform security reviews, Microsoft said it identified a Spotlight plugin vulnerability during proactive hunting, sharing findings with Apple via Coordinated Vulnerability Disclosure.
  • Microsoft noted that 'Sploitlight' can leak sensitive data cached by Apple Intelligence, with risks heightened by iCloud account linking, in a vulnerability affecting macOS Spotlight.
  • Following Microsoft’s disclosure, Apple addressed the flaw in macOS 15.4 and iOS 15.4 updates released on March 31, 2025, and users are encouraged to apply the updates.
  • Industry experts warn that as threats evolve, ongoing vigilance and cross-company cooperation will be crucial to defending against sophisticated exploits like 'Sploitlight', and analysts recommend adopting zero-trust models.
Insights by Ground AI
Does this summary seem wrong?

14 Articles

The RegisterThe Register
Center

Microsoft throws spotlight on Apple bug patched in March

: Look over there!

Read Full Article
9to5Mac9to5Mac
Reposted by
machash.commachash.com
Center

SploitLight: Microsoft warns macOS flaw could leak Apple Intelligence metadata

Microsoft has detailed a serious macOS vulnerability that could allow malicious apps to bypass system privacy protections. Dubbed “SploitLight,” the...

Read Full Article
BleepingComputerBleepingComputer
Center

Microsoft: macOS Sploitlight flaw leaks Apple Intelligence data

Attackers could use a recently patched macOS vulnerability to bypass Transparency, Consent, and Control (TCC) security checks and steal sensitive user information, including Apple Intelligence cached data.

Read Full Article
MacRumorsMacRumors
Center

macOS Spotlight Vulnerability Discovered by Microsoft

Microsoft Threat Intelligence found a Spotlight-related vulnerability that could allow attackers to steal private file data, outlining the issue in a blog...

·United States
Read Full Article
HeiseHeise

Microsoft Researchers Find Tcc Gap in Apple's Spotlight: Data Leak Threatens

The exploit "Sploitlight" is designed, among other things, to capture sensitive data via Apple Intelligence. The bug has been fixed, also affecting the iPhone.

·Germany
Read Full Article
Cyber Security NewsCyber Security News

Critical macOS 'Sploitlight' Vulnerability Let Attackers Steal Private Data of Files Bypassing TCC

A critical macOS vulnerability enables attackers to bypass Transparency, Consent, and Control (TCC) protections and steal sensitive user data, including files from protected directories and Apple Intelligence caches.

Read Full Article
Think freely.Subscribe and get full access to Ground NewsSubscriptions start at $9.99/yearSubscribe

Bias Distribution

  • 100% of the sources are Center
100% Center

Factuality 

To view factuality data please Upgrade to Premium

Ownership

To view ownership data please Upgrade to Vantage

MacRumors broke the news in United States on Monday, July 28, 2025.
Sources are mostly out of (0)

Similar News Topics

Microsoft icon

Microsoft

Apple icon

Apple

Apps icon

Apps

Germany icon

Germany

News
For You
SearchBlindspotLocal