Apple's iPhone Spyware Problem Is Getting Worse

erek

[H]F Junkie
Joined
Dec 19, 2005
Messages
11,007
Remember triangulation and Pegasus?
"Triangulation" infected dozens of iPhones belonging to employees of Moscow-based Kaspersky
Spyware craft is interesting, from NSO Group's Pegasus to Candiru "Kaspersky’s summary of the...

While Apple says the latest spyware notifications aren't linked to LightSpy, the spyware remains a growing threat, particularly to people who may be targeted in Southern Asia, according to Blackberry's researchers. Described as a "sophisticated iOS implant," LightSpy first emerged targeting Hong Kong protesters in 2020. However, the latest iteration is much more capable than the first. "It is a fully-featured modular surveillance toolset that primarily focuses on exfiltrating victims' private information, including hyper-specific location data and sound recording during voice over IP calls," the researchers wrote. April's warnings were not the first time Apple has issued notifications of this kind. The iPhone maker has sent out alerts to people in over 150 countries since 2021 as spyware continues to target high-profile figures across the globe.

Spyware can be weaponized by nation-state adversaries -- but this is relatively rare and expensive. Its deployment is typically highly targeted against a very specific group of people, including journalists, political dissidents, government workers, and businesses in certain sectors. "Such attacks are vastly more complex than regular cybercriminal activity and consumer malware, as mercenary spyware attackers apply exceptional resources to target a very small number of specific individuals and their devices," Apple wrote in an advisory in April. "Mercenary spyware attacks cost millions of dollars and often have a short shelf life, making them much harder to detect and prevent. The vast majority of users will never be targeted by such attacks." Plus, Apple says its Lockdown Mode feature can successfully protect against attacks. "As we have said before, we are not aware of anyone using Lockdown Mode being successfully attacked with mercenary spyware," Bauer says. Still, for those who are targeted and caught unaware, spyware is extremely dangerous.
There are a number of ways to protect yourself against spyware and zero-click exploits in particular:

1. Regularly Update Devices: Keep your devices updated to the latest software to protect against known vulnerabilities.
2. Restart Devices Daily: Regularly restarting your device can help disrupt persistent spyware infections by forcing attackers to reinfect the device, potentially increasing their chances of detection.
3. Disable Vulnerable Features: Consider disabling features prone to exploits, such as iMessage and FaceTime, especially if you suspect you're a target for spyware.
4. Use Multifactor Authentication and Secure Sources: Employ multifactor authentication and only install apps from verified sources to prevent unauthorized access and downloads.
5. Monitor for Indicators: Be vigilant for signs of infection such as battery drain, unexpected shutdowns, and high data usage, though these may not always be present with more sophisticated spyware.
6. Seek Professional Help: If you suspect a spyware infection, consider professional assistance or helplines like Access Now's Digital Security Helpline for guidance on removal.
7. Utilize Advanced Security Features: Activate security features like Apple's Lockdown Mode, which limits device functionality to reduce vulnerabilities, thus safeguarding against infections.”

Source: https://apple.slashdot.org/story/24/05/07/0157234/apples-iphone-spyware-problem-is-getting-worse
 
A cellphone contains all the necessary hardware to be a surveillance team's wet dream, they have been espionage targets since day 1. Still, it's cool to see how they go about doing it though.
 

I watched that video which near the end was justifying that sometimes zero days are good, like when governments take down hackers. Zero days are never good, and I don't trust anybody with that kind of power, especially the government.
"NSO Group, which makes Pegasus spyware, keeps trying to extract information from Citizen Lab researchers — and a judge keeps swatting it down." https://theintercept.com/2024/05/06/pegasus-nso-group-israeli-spyware-citizen-lab/
That NSO Group is an Israeli backed spyware company that is upset that they can be sued in American courts for their Pegasus spyware. It amazes me why this company wasn't obliterated off the face of the Earth for hacking into American devices.
 
Guess I am just going to have to stick to the few things I used my iPhone for and be careful, otherwise.
 
Back
Top