Just a few hours before that iOS 9 to be officially launched by the company Apple Lossless Audio CODEC (ALAC), a critical iOS 8.4.1 security bug has been revealed on the internet that allows a hacker to exploit your iDevices without problems.
The security bug exploits a system vulnerability AirDrop, a hacker being able to take control of your terminal by simply sending a file via AirDrop, without you accepting or rejecting it.
After infecting the iDevice, the hacker must wait for it to be reset, the malware installing itself after this procedure in the form of an application that can access contacts, photos, movies, or a multitude of other data that normally no one they should not see them without our consent.
The big problem here is that the hack can be done even if the user refuses to receive the infected file, so you have no way to protect yourself unless you install iOS 9, which will be released in an hour and which has the bug fixed.
The [malware] app is restricted by its sandbox. However since you sign the app, you can grant some entitlements that allow it to do things like read contacts, get location information, use the camera or whatever other entitlements legitimate apps can be allowed to have.
Interesting date to reveal such an important security bug, right?
