Facebook Can Get Location Data From Your Photos

iOS users can limit their location exposure to apps that ask for it, but your location is leaking in another area: Your photo metadata.

I took a photo with my iPhone and then uploaded that to my Facebook account. I used Facebook’s app on my iPhone, the same app that has been told “never” to access my location, the same account that knows I have this switched off. But Facebook still collects the location tag from that photo, along with my IP address.

It’s important to note that Facebook and other companies have had this ability for years. This is not, as the Forbes article implies, a response to iOS 14.5 App Tracking Transparency. The app I use to view and edit metadata is Metapho.

WebKit Flaw Crashes Safari, Could Lead to Further Exploits

A WebKit flaw on iOS and macOS can cause Safari to crash and could lead to further malicious attacks.

The vulnerability stems from what security researchers call a type confusion bug in the WebKit implementation of AudioWorklet, an interface that allows developers to control, manipulate, render, and output audio and decrease latency. Exploiting the vulnerability gives an attacker the basic building blocks to remotely execute malicious code on affected devices.