Hey all,
I found a (copy of) a file in my iCloud Desktop folder. I surely didn't put it there on purpose.
It's a file containing highly sensitive data (passwords of industrial devices that cannot be stored in a password manager) that I normally keep in a sparsebundle with password protection. I found myself in agony for a minute when I noticed a copy of this file on my Desktop, which happens to be in iCloud: all of my sensitive data was in a fully exposed state, ripped from the refuge of the sparsebundle, and it even had been uploaded to Apple. Arghhh.
What I did:
1. I copied the file (renamed it first) to the sparsebundle in case I would find the need to examine it later
2. I deleted the file from the iCloud Desktop folder and emptied the trash
Question 1:
The file has resided in the iCloud desktop folder for about a month (I hardly ever use the Desktop folder) before I stumbled on it. Can I still consider the file contents to be 100% confidential? In other words: can I rely on Apple not making copies of my iCloud data? A breach or succesful hacking attempt is not likely as iCloud uses 2FA and I haven't seen any rogue login notifications. The devices in question can be accessed from the internet and we haven't seen any unusual activity.
Question 2:
I am wondering how in the name of Steve Jobs this file could end up in the Desktop folder. Is there some automated process that saves orphan files to the desktop folder by default? So let's say I was working on that file and I closed the sparsebundle prematurely or the network connection was lost, would MacOS save the file to the Desktop? Can't think of anything else ATM.
I could of course change all the passwords, but that would take me days.
Would appreciate any help.
I found a (copy of) a file in my iCloud Desktop folder. I surely didn't put it there on purpose.
It's a file containing highly sensitive data (passwords of industrial devices that cannot be stored in a password manager) that I normally keep in a sparsebundle with password protection. I found myself in agony for a minute when I noticed a copy of this file on my Desktop, which happens to be in iCloud: all of my sensitive data was in a fully exposed state, ripped from the refuge of the sparsebundle, and it even had been uploaded to Apple. Arghhh.
What I did:
1. I copied the file (renamed it first) to the sparsebundle in case I would find the need to examine it later
2. I deleted the file from the iCloud Desktop folder and emptied the trash
Question 1:
The file has resided in the iCloud desktop folder for about a month (I hardly ever use the Desktop folder) before I stumbled on it. Can I still consider the file contents to be 100% confidential? In other words: can I rely on Apple not making copies of my iCloud data? A breach or succesful hacking attempt is not likely as iCloud uses 2FA and I haven't seen any rogue login notifications. The devices in question can be accessed from the internet and we haven't seen any unusual activity.
Question 2:
I am wondering how in the name of Steve Jobs this file could end up in the Desktop folder. Is there some automated process that saves orphan files to the desktop folder by default? So let's say I was working on that file and I closed the sparsebundle prematurely or the network connection was lost, would MacOS save the file to the Desktop? Can't think of anything else ATM.
I could of course change all the passwords, but that would take me days.
Would appreciate any help.
