by Dan Moren
AirDrop vulnerability partially patched in iOS 9
Another good reason to upgrade to iOS 9 when it arrives: it improves—though doesn’t yet patch entirely—handling of a security vulnerability related to AirDrop:
[Security researcher Mark] Dowd reported the vulnerability to Apple, which released a mitigation, but not a full patch, for it in iOS 9, which is due out Wednesday. He said that while the user will see a notification when she receives a malicious package via AirDrop, it doesn’t matter whether she accepts or denies the AirDrop request.
More importantly, a good reason to keep AirDrop set to “Contacts Only,” which you can do from Control Center on iOS.