A recently discovered hole in Apple s iOS allows third-party developers access to users iPhone, iPad or iPod Touch photos. The New York Times had an unnamed developer create a proof of concept application app to do just this. The app, called PhotoSpy, was never submitted to the App Store for approval but asked users for access to location data. After granting it, the app began transferring photos and location data from the phone to a remote server. Apple first allowed apps access to photo libraries in 2010 with the fourth build of their operating system.
Source: https://threatpost.com/loophole-ios-allows-developers-access-users-photos-022912/76269/