Key Takeaways:
Apple, on Wednesday, sent a message to individual iPhone users in 92 countries warning them about mercenary spyware attacks that may have targeted them. The alerts were sent out to customers at noon Pacific Time.
The company did not disclose the attacker’s identities or in which countries users received the notification.
Apple Warns Individual Customers About Potential Spyware Targeting Their Devices
In the message, Apple wrote it detected that certain customers were being targeted by a mercenary spyware attack trying to compromise the iPhone associated with their Apple IDs remotely.
The iPhone maker stated the attack is likely targeting the user specifically because of who they are and what they do. Apple also added that although it’s never possible to achieve absolute certainty when detecting such attacks, it has high confidence in the warning, before asking them to take it seriously.
These security warnings are not something new from the tech giant. Apple has issued similar alerts to customers in over 150 countries since 2021, as per an updated Apple support page.
Apple Warned Indian Journalists and Politicians About Pegasus Malware in 2023
In October of last year, Apple sent an identical warning to several journalists and politicians in India. Nonprofit advocacy group Amnesty International reported that they had found Israeli spyware maker NSO Group’s invasive malware Pegasus on the iPhones of prominent individuals from the country.
India customers are among those who received Apple’s latest threat notifications, according to people familiar with the matter.
Apple’s support page notes that mercenary spyware attacks usually target a smaller group of individuals. According to public recordings from civil society organizations, technology firms, and journalists, these attacks have historically been associated with state actors and often aim at journalists, activists, politicians, and diplomats.
State-Sponsored Attacks a Major Concern During Biggest Election Year
The alerts come at a time when major countries, like the US, the UK, and India, are preparing for elections. In recent months, many major tech and security firms have cautioned about the risk of state-sponsored attacks targeting elections to sway results for certain outcomes.
According to the World Economic Forum, over a billion people from 60 countries are expected to vote in what is said to be the biggest election year in history.
Earlier, Apple used to mention the attackers as “state-sponsored”, but has now replaced the term with “mercenary spyware attacks”. In the warning to iPhone users, the company adds that attacks such as those using Pegasus by the NSO Group are “exceptionally rare” and “vastly more sophisticated” than regular cybercriminal activity or consumer malware.
Cupertino Recommends Those Who Have Been Contacted to Take Necessary Security Measures
Apple recommends users who found that they have been contacted enlist help from security experts, such as the rapid-response emergency security assistance provided by the Digital Security Helpline at the non-profit digital civil rights group Access Now.
iPhone customers who received the threat notification can contact the Access Now helpline 24/7 through their official website.
Apple suggested that users update their devices to the latest iOS 17.4, which has the latest security patches and implements two-factor authentication for their Apple ID.
In September 2022, the company introduced Lockdown Mode for the iPhone, iPad, Mac, and Apple Watch to reduce the risk of exploits by highly targeted mercenary spyware. When a device enters Lockdown Mode, all messages, attachments, web pages, and FaceTime calls coming from unknown devices are blocked.
Apple also asked users to refrain from clicking unknown links or attachments received from non-contacts, only download and install apps from its official App Store, protect their devices with a passcode, and use strong passwords for Apple IDs.
More News: Google Is Expanding Its AI Photo Editing Tools To A Lot More Devices