Here's Why You Shouldn't Use iPhone Mirroring on a Corporate Mac

Apple's new iPhone Mirroring feature in macOS Sequoia might seem like a convenient way to access your phone from your work computer, but security firm Sevco has uncovered a significant privacy risk that should make employees think twice before enabling this feature on company-owned Macs, at least for now.

macos sequoia macbook air iphone mirroring app icon in dock
According to a new blog post by Sevco, the core issue lies in how iPhone Mirroring interacts with macOS's file system and metadata. When activated, the feature creates "app stubs" for iOS applications in a specific directory on the Mac:

/Users//Library/Daemon Containers//Data/Library/Caches/

These app stubs contain metadata about the iOS apps, including icons, application names, dates, versions, and file descriptions. While they don't include the full executable code, they provide enough information for macOS to treat them as installed applications.

The problem arises because many enterprise security and IT management tools routinely scan Macs for installed software. These tools often use macOS's built-in metadata system, which now includes these iOS app stubs. As a result, personal iPhone apps can inadvertently appear in corporate software inventories.

Sevco demonstrated this issue using the macOS command line tool mdfind, which interfaces with the Spotlight search subsystem:

mdfind "kMDItemContentTypeTree == com.apple.application" | grep Daemon

When executed in a Terminal window that has been granted full disk access without setting up iPhone Mirroring, the command returns a normal list of macOS applications. But when executed in that same Terminal window after setting up iPhone Mirroring, it also returns personal iOS applications and metadata.

For employees, this means that apps they use privately could become visible to their employer's IT department without their knowledge or consent. This could potentially reveal sensitive personal information, such as dating apps, health-related apps, or VPNs used in countries with restricted internet access.

macos sequoia iphone mirroring

Sevco has alerted Apple to this privacy concern, and the company is reportedly working on a fix. However, until a patch is released and widely implemented, the risks remain. For now, employees should avoid using iPhone Mirroring on work Macs. Companies should also be aware of this potential data liability and consider temporarily disabling the feature on corporate devices if possible.

Related Roundup: macOS Sequoia
Related Forum: macOS Sequoia

Popular Stories

election results 2024 live activities

Track 2024 U.S. Election Results Live on Your iPhone Lock Screen

Tuesday November 5, 2024 5:02 am PST by
Apple News is providing Live Activities support for the 2024 U.S. presidential election, allowing iPhone and iPad users to track electoral results in real time directly from their Lock Screen. The feature is rolling out for U.S. users over the course of Election Day, November 5, providing continuous updates of the electoral count. So if you're interested, you don't need to repeatedly check...
Generic iOS 18

Everything New in iOS 18.2 Beta 2

Monday November 4, 2024 12:34 pm PST by
Apple today seeded the second betas of upcoming iOS 18.2 and iPadOS 18.2 updates to developers, and Apple is continuing to refine the Apple Intelligence capabilities. There are also a handful of smaller features that are worth knowing about. Find My Find My has a new option to Share Item Location with an "airline or trusted person" that can help you locate something that you've misplaced....
iCloud General Feature

Here's What's New in Apple's Updated iCloud Terms and Conditions Taking Effect Next Week

Friday September 13, 2024 7:39 am PDT by
Apple has started notifying users about an upcoming revision to its iCloud Terms and Conditions, which takes effect on Monday, September 16. We compared the text of the upcoming iCloud Terms and Conditions with the current U.S. version from September 18, 2023 and identified four key changes: "Apple ID" references have been changed to "Apple Account" throughout. iCloud users must agree to ...
ipads early bf deals

The Best Early Black Friday iPad Deals

Tuesday November 5, 2024 7:02 am PST by
Black Friday is still a few weeks away, but you can already find great prices on numerous iPads, including the 9th generation iPad, 10th generation iPad, iPad Air, and iPad mini. Note: MacRumors is an affiliate partner with some of these vendors. When you click a link and make a purchase, we may receive a small payment, which helps us keep the site running. Of course, there is a chance that ...
ios 18 2 chatgpt plus

iOS 18.2 Beta 2 Shows Siri ChatGPT Limit, Offers 'Plus' Upgrade Option

Monday November 4, 2024 10:54 am PST by
With the second beta of iOS 18.2 that's available for developers today, Apple has further fleshed out the ChatGPT integration that's available with Siri. In the Settings app, there's now a section that shows the ChatGPT daily limit, and offers an option to upgrade to the paid ChatGPT Plus plan. The beta includes an Advanced Capabilities section with a "Daily Limit" reading that shows up as...
M4 MacBook Pros Thumb

M4 MacBook Pro Reviews: Processor Benchmarks Impress, New Nano-Texture Option Worth the Extra $150

Thursday November 7, 2024 6:14 am PST by
The first wave of reviews of Apple's new M4-powered MacBook Pro models were published this morning. We've collected some of the latest impressions from YouTube channels and select media outlets below. Apple last month announced the new 14-inch and 16-inch MacBook Pro models, adding next-generation M4, M4 Pro, and M4 Max chips, with Thunderbolt 5 ports on higher-end models, display and camera ...
early apple watch black friday

The Best Early Black Friday Apple Watch Deals

Wednesday November 6, 2024 6:33 am PST by
Black Friday is just around the corner, and Apple Watch deals have begun appearing ahead of the shopping holiday on November 29. In this article, we'll take a look at all of the best early Black Friday Apple Watch deals, including the new Series 10 models. Note: MacRumors is an affiliate partner with some of these vendors. When you click a link and make a purchase, we may receive a small...

Top Rated Comments

Line_Noise Avatar
4 weeks ago
More pointedly, don’t use your personal Apple ID on a corporate Mac. Because that’s a requirement for enabling iPhone Mirroring.
Score: 25 Votes (Like | Disagree)
00001000bit Avatar
4 weeks ago
I imagine employers also do not want this.

I use the personal (free) license for Fusion360 and have it on my phone. If that appears on a corporate owned computer, is the company now liable for a commercial license? It's not like Autodesk is particularly forgiving about commercial licensing.
Score: 11 Votes (Like | Disagree)
mattopotamus Avatar
4 weeks ago
It is times like this I am happy I work for a small business and I am the "IT" person haha.
Score: 11 Votes (Like | Disagree)
ignatius345 Avatar
4 weeks ago
You can't mirror your personal iPhone mirroring onto a Mac signed into a different Apple ID.

If your work computer and your personal iPhone are signed into the same Apple ID, that Mac already has access to ALL OF YOUR STUFF -- texts, files, browsing history and even your ****ing iCloud Keychain.

There is no "security failure" here whatsoever, except on the part of any user stupid enough to set up a machine they don't own with access to all their personal information.
Score: 10 Votes (Like | Disagree)
Lyrics23 Avatar
4 weeks ago

Well now we know why Apple does not release it in the EU-SSR
Uh, why? Apple’s security failure in this instance has literally nothing to do with the EU.

I suppose a company choosing to abuse the flaw might fall afoul of GDPR’s privacy protections, depending on why they’re gathering the data and what they do with it, but that has nothing to do with Apple.

Though I suppose the way you misnamed the EU shows clearly enough that you are only posting in bad-faith, without having any actual argument.
Score: 10 Votes (Like | Disagree)
B4U Avatar
4 weeks ago
And why would you use a personal Apple ID on the work laptop anyway?
Score: 9 Votes (Like | Disagree)