UNITED STATES (OBSERVATORY NEWS) — Computer security researchers Talal Haj Bakry and Tommy Mysk have published a study demonstrating what they consider a vulnerability in the iPhone and iPad.
However, Apple did not agree with them.
As the experts found out, by copying the photo just taken to the iOS clipboard, the user puts himself at risk. Along with the image, the metadata associated with it is also copied, among which is the exact location in which the photo was taken.
After that, any other running application in iOS can freely and imperceptibly access the data in the buffer, including GPS data accompanying the photo, information about the model of the device that took the photo, and the shooting time.
To access the location “legally”, the program must send a request to the user, and then obtain a single or permanent permission.
Researchers sent the results of their research to Apple, but there they were not impressed by their find. The company said that the discovered feature in iOS and iPadOS is not considered a vulnerability.
Indeed, for the trick to work, too many conditions are required: the user must download the malicious application and use the rather atypical practice of copying the picture just taken to the clipboard – usually people still use the Share menu to send photos or add them to the messenger message or electronic letter.
This article is written and prepared by our foreign editors writing for OBSERVATORY NEWS from different countries around the world – material edited and published by OBSERVATORY staff in our newsroom.
Contact us: [email protected]