"Apple’s iOS Pasteboard Leaks Location Data to Spy Apps"
To many iOS users, pasteboard is simply part of the way to copy and paste data from one place to another. App developers called Mysk discovered a vulnerability in pasteboard, which can allow malicious apps to exploit it, and allow adversaries to gain knowledge of the user’s location even when that user has locked down app location sharing. Images taken with the embedded camera app on iPhones and iPads are saved with embedded GPS metadata, which records where each photo is taken. If an image is copied using the pasteboard, a malicious app can then access the photo’s location metadata and timestamps to determine where the photo was taken and if the picture has been taken in that moment or the past.
Naked Security reports: "Apple’s iOS Pasteboard Leaks Location Data to Spy Apps"