Microsoft Uncovers Sploitlight: macOS Vulnerability Bypassing TCC
Microsoft uncovered "Sploitlight," a macOS Spotlight vulnerability (CVE-2025-31199) that bypasses TCC privacy controls, enabling attackers to access sensitive data like AI-generated metadata without consent. Apple patched it in March, but it underscores the need for cross-platform vigilance in cybersecurity.
Full Article