Wired
The iOS app developer has discovered that the “Mail” app on the Apple Watch does not support Apple’s unique “Mail Privacy Protection” feature.
Email privacy protection function is not available
Email privacy protection is a new feature first introduced in iOS15, iPadOS15, and macOS Monterey. Keeping your IP address private prevents email senders from locating recipients or reading information about online activity. Also, the sender of the email does not know information such as whether the email was opened, how many times it was viewed, or whether it was forwarded.
This feature routes all content downloaded by the email app through multiple proxy servers, removes the user’s IP address, and then assigns a random IP address that corresponds to the user’s region. This causes the email sender to display general information rather than specific information about the user.
According to Apple’s web page, Email Privacy Protection and Privacy, this feature is only available on iPhone, iPad, and Mac, but security researchers and iOS app developers Talal Haji Bakery and Tommy. Mr. Misk discovered that the Apple Watch does not hide the recipient’s IP address, which can compromise the entire security provided by the email privacy protection feature.
Apple Watch enables email privacy protection on the iPhone because it uses the recipient’s actual IP address to download remote content, such as images, both when receiving email notifications and when opening emails. Even users will be exposed to their IP addresses.
Heads-up: The mail privacy protection introduced in iOS 15 doesn’t apply to the Mail app on the Apple Watch. Both the Mail app and the notification preview on the Apple Watch download remote content using your real IP address. #Cybersecurity #iOS pic.twitter.com/o0lh9rPQTd
— Mysk
(@mysk_co) November 15, 2021
Source: Mysk / Twitter via MacRumors, 9to5Mac
(m7000)
Source: iPhone Mania