There are quite a few security bugs fixed in the iOS 10.2.1 update that Apple released on January 23. iPad and iPhone users should install this right away to patch a number of security holes. These include a bug that allowed malicious content to be loaded via a bad Contacts card, a couple of bugs in the kernel that would allow bad code to be run, and a number of fixes to the WebKit. You can read Apple’s list of bug details at https://support.apple.com/en-us/HT207482, According to Wired Magazine, “iOS 10.2.1, though, protects against a wide range of potentially devastating attacks.” This is a bug fix release, it doesn’t add any new features to iOS.
Yes, it does appear that initially Pokémon Go could cause privacy problems, since it asks iOS for full access to a user’s Google account. (And Google has lots of information about you.) But independent tests seem to show that they only info that gets collected is your user ID and email address. The developer, Niantic, is changing the app so that it only asks for the basic information. So, it doesn’t appear that you have to worry about privacy issues – you only have to worry about stepping in front of a car or falling down an open manhole while walking down the street staring at your phone. Note that the Android version did not ask for all the privileges, so it doesn’t need fixed. See more details about this at Ars Technica.
Bad guys will take advantage of natural disasters, such as the recent earthquakes in Japan and Ecuador, to send out emails that allegedly have links to sites where you can donate to help the victims. In reality this may be a scam, and you may be donating to the bank accounts of these scammers. Not only that, following these links may also download malicious content to your computer. US-CERT has a number of steps you can take to stay safe – with possibly the number one step being not to follow a link that is an unsolicited email.