Pretty sure this is a gmail syncing thing. I haven't really used my gmail account as much since I got rid of android, so removed the account and the Mail App stopped popping up on it's own. Now I've just got gmail set to forward to one of my main address to keep it from happening.
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Edison Mail Sync Bug Allowing Access to Other Users' Email Accounts [Updated]
- Thread starter MacRumors
- Start date
- Sort by reaction score
Pretty sure this is a gmail syncing thing. I haven't really used my gmail account as much since I got rid of android, so removed the account and the Mail App stopped popping up on it's own. Now I've just got gmail set to forward to one of my main address to keep it from happening.
There is no way on earth, that I would use a free third party mail app like this.
Every iOS email app that has push notifications stores you credentials (username+password) on the app providers SERVER and has FULL access to all your emails.
That's a fact.
How I know that? Because the Apps themselve can't have an open connection to the mail-server in the background.
Even Apple own email client doesn't do IMAP push (IMAP IDLE). Hence you need a server in the middle to connect to the IMAP/POP mail server and initiate a push notification.
Given the fact that your email account is the key to literally every other account you have, choose your mail app wisely...
That's a fact.
How I know that? Because the Apps themselve can't have an open connection to the mail-server in the background.
Even Apple own email client doesn't do IMAP push (IMAP IDLE). Hence you need a server in the middle to connect to the IMAP/POP mail server and initiate a push notification.
Given the fact that your email account is the key to literally every other account you have, choose your mail app wisely...
What a CFU, not reporting it makes it worse, being quiet is the stupidest thing they can do, and eventually they just say they are sorry in a short message...me...shakes head.
As a reminder: When using Outlook, all your mails will be copied to Microsoft servers.
If you're still happy with that, how did you configure Outlook for iCloud? Probably try configuring manually: https://support.apple.com/en-us/HT202304
Outlook itself has been known for sync issues, where it even stalls completely (hasn't happened anymore recently). Sometimes fixed itself, otherwise the reset button in the app to trigger a complete sync did the job.
And #4 on that list is pretty damning, too... unless they’re required to share people’s emails with those other people by law? 🤔
Privacy Policy — Edison Mail
mail.edison.tech
Maybe they can spin this to put the blame on Coronavirus 🧐
I just revoked my 2FA logins for my iCloud account and logged out of all apps for Gmail. How did you delete your data there? Is there somewhere on Edison’s end you can delete your data? Can you share a link to that?
Bad news: I had Edison installed on iOS. It was one of the email apps I was thinking about using as a primary app (versus Canary). I never ended up how intrusive it was though (I believe it read emails to do the whole AI stuff?).
Good news: It was my main gmail account that had to be reconnected because I enabled 2FA on the account a few months back and never got around to doing that on Edison because I forgot I had it. So no one got access to my email
Good news: It was my main gmail account that had to be reconnected because I enabled 2FA on the account a few months back and never got around to doing that on Edison because I forgot I had it. So no one got access to my email
I hate this. I hate this so much. I read someplace that it's due to gmail. Yeah. Doesn't matter. I wish Apple would fix it because people are not going to change their email account just to use the default email application.
[automerge]1589645710[/automerge]
I have heard this before, but it's on Apple for supporting the largest email services. Or, at the very least.
That's actually not true. There are several ways to implement push email on iOS that do not require storing credentials on the server side:
- Some email providers can send Apple push notifications to the stock Mail app; that obviously includes iCloud email, but also Fastmail and Mailbox.org.
- Some email providers offer their own email apps, and can of course implement push notifications for those. That includes Fastmail, Protonmail, Tutanota and probably others.
- You can use Exchange Activesync (which has its own efficient push mechanism) with the stock Mail app. This is supported by Outlook.com and Google business accounts.
These are all safe methods.
Generally, when choosing an email client, it is safest to pick the stock Apple client, an open source client like Thunderbird, or, if available, the email provider's own app.
But yes, this incident illustrates nicely why storing account credentials on 3rd party servers is a bad idea.
Let this be yet another reminder to file bugs for any and every issue that comes up in the mail app when iOS 14 beta testing starts. And then file more. And then more. It’s frustrating that they don’t seem to be looking at them, sure. So I’m just going to keep filing a new radar per every single issue I come across so the sysdiagnose file gets added each time. I recommend any and all do the same. I’ve had MANY issues with the default mail app in iOS 13, and filed bugs. Almost all of my issues have been resolved. I’ve had to erase my iPhone and setup as new, but that fixed some other stuff, too. Anyway, yeah, really bad for Edison. I can’t see them continuing on unless they’re bought out and they change the name. And a lot more.
Why did you start using this app to start with given the risks? Just curious.This happened to me too! Very concerning!! Going back to the built-in mail app
I originally considered trying Edison Mail a couple years ago but during the setup it was obvious they were going to basically be a "middle man" for my email - they'd download all of it and perform "magic" on their servers and then I'd read the results. Not a good idea at all. I deleted immediately
Both. Mail will open on its own and open a window. I then have to quit the app again. For me it isn't exactly every 15 minutes, but it will interrupt whatever I am doing. If I have an app full screen it will switch to split screen.
It can be really bad. I once had it occur during a proctored test.
This app was already questionable. Now I’m definitely never using it again. Glad I ditched it.
The Outlook app has the same fundamental security flaw when used with non-Microsoft email accounts: it stores your account credentials (and your emails) in their cloud ...
For me it’s because Mail still sucks, but now for security reasons it’s all I use.
True, but I’m certain Apple would not be remiss in issuing a patch or update as quickly as they usually do in such cases when discovered.
The folks at Edison are saying it's a bug, not a breach. Gee, that's comforting. /s
I'm sure the light bulb went off in someone's head at Edison to the realization that this is the worst time for this to occur. Loss of user trust and confidence are the death knell for any business in this COVID-affected economy.
Being in IT, I'm certainly cognizant that bugs are a fact of life. But when the severity of a bug combines aligns with a flaw like this, the fallout is going to take a toll. Especially with an exposure this glaring.
I'm sure the light bulb went off in someone's head at Edison to the realization that this is the worst time for this to occur. Loss of user trust and confidence are the death knell for any business in this COVID-affected economy.
Being in IT, I'm certainly cognizant that bugs are a fact of life. But when the severity of a bug combines aligns with a flaw like this, the fallout is going to take a toll. Especially with an exposure this glaring.