Skip to main content
  1. Home
  2. Mobile
  3. News

An iPhone just blocked one of the worst spyware attacks on the planet

Nadeem Sarwar
By

Apple released an “extreme safety” measure bundled with iOS 16 last summer, and it’s targeted at sophisticated spyware that is usually deployed covertly against government agencies. It appears that Apple’s safety tool is effective, to a certain extent, against Pegasus — one of the most devastating surveillance attacks ever documented. 

Citizen Lab, the security group based at the University of Toronto’s Munk School of Global Affairs & Public Policy, has detailed a pair of zero-click exploits that targeted iOS 15 and iOS 16 devices last year. Labeled PWNYOURHOME and FINDMYPWN, these exploits were widely used by Pegasus-maker NSO Group against targets in Mexico and elsewhere.

Lockdown Mode information page on an iPhone 14 Pro.
Joe Maring/Digital Trends

The security lab notes that on iPhones with Lockdown Mode enabled, the target got real-time notifications if the Pegasus spyware tried to exploit the PWNYOURHOME vulnerability. NSO Group may have eventually devised a workaround against the alert system, but in general, there is no evidence that the aforementioned security flaw was abused on any device with Lockdown mode enabled.  

Related Videos

“Given that we have seen no indications that NSO has stopped deploying PWNYOURHOME, this suggests that NSO may have figured out a way to correct the notification issue, such as by fingerprinting Lockdown Mode,” Citizen Lab writes in its exhaustive report.

The security lab suggests that all at-risk users should enable Lockdown Mode to ensure that they don’t become the next targets of Pegasus-fueled illicit surveillance — or any such spyware that is virtually impossible to detect in the wild.

Example of an iPhone with Lockdown Mode blocking attacks from Pegasus spyware.
Example of Lockdown Mode blocking a Pegasus attack Citizen Lab

Apple says Lockdown Mode is aimed at “very few individuals who, because of who they are or what they do, might be personally targeted by some of the most sophisticated digital threats.” As such, it trades security with your average smartphone functionalities. For example, it disables certain messages, blocks access to a bunch of websites, and blocks FaceTime calls from unknown contacts, among other connectivity restrictions. 

But as they say, you can never be too sure about your security. As far as Pegasus goes, it has been deployed against journalists, activists, high-ranking officials, and political figures all across the globe. And it’s the zero-click nature of this surveillance agent and how it covertly mines almost every kind of sensitive information — from calls logs and emails to storage content — that makes it a favorite of bad actors seated in positions of state power.

With proof that Lockdown Mode is effective at stopping the spyware, anyone even remotely concerned about being targeted by Pegasus (or similar attacks) should seriously consider enabling Lockdown Mode on their iPhone ASAP.

Editors' Recommendations

Topics
Nadeem Sarwar
Nadeem Sarwar
Contributor

Nadeem is a tech journalist who started reading about cool smartphone tech out of curiosity and soon started writing professionally. Aside from keeping a track of the latest developments in the segment, he also tests out the newest gizmos, serves hot opinions about disastrous product decisions, and occasionally talks to smarter people for stories that connect tech with our lives. Previously, he has worked with prestigious names like NDTV Gadgets 360, Beebom, and Pocketnow. When he's not busy furiously typing on his precious mechanical keyboard, he likes to play Doom Eternal and cooks weird delicacies.

I’m worried about the red iPhone 15 Pro, and you should be too
Render of the iPhone 15 Pro in red.

Spring is in the air, and it’s also prime time for iPhone rumors. If the latest reports are true, then we should expect the iPhone 15 lineup to have the Dynamic Island across the board and even USB-C charging thanks to EU regulations. But the iPhone 15 Pro is where things are going to be even more interesting.

Here, we have things like the possibility of no more mute switch and moving to a haptic multi-use button, a periscope lens on the iPhone 15 Pro Max (with massive camera bumps on both Pro models), and more.

Read more
The more I see the iPhone 15 Pro, the more I hate one thing about it
iPhone 15 Pro Max bezel render

We’re only months away from the fall season, which is typically when Apple announces the next generation of iPhone and Apple Watch. This year, we’re expecting the iPhone 15 and iPhone 15 Pro alongside the Apple Watch Series 9. This means that the iPhone rumor mill is in full swing, and we’ve been getting a lot of iPhone 15 news lately.

Over the weekend, 9to5Mac released an exclusive report with new renderings and details of what the iPhone 15 Pro will look like. Though it sounds like it’s going to be an impressive upgrade in terms of specs, I just can’t help but hate how it actually looks — at least, with that super chunky camera bump.
It’s time to rethink the camera design

Read more
Own an iPhone, iPad, or MacBook? Install this critical update right now
IOS 16.4.1 UPDATE.

Apple has released software updates for iPhones and iPads that are light on features, but they are critically important from a security perspective. The updates — iOS 16.4.1 and iPadOS 16.4.1 — started rolling out on Friday, but you should install them on your iPhone and iPad as soon as possible to protect your devices from attacks.

In its official release note, Apple says the updates patch two security flaws that “may have been actively exploited.” Now, Apple doesn’t disclose security issues before conducting thorough research, both in-house and in collaboration with cybersecurity experts. In a nutshell, when Apple publicly announces a security flaw, and it comes with a “Critical Vulnerability” badge, you should grab the fix as soon as Apple makes them available.

Read more