11 April 2024

Apple enhances spyware threat notifications


Apple enhances spyware threat notifications

Tech giant Apple has updated its spyware threat notification system to add alerts for users who may have been specifically targeted in tailored surveillance campaigns.

First introduced in November 2021, Apple's threat notifications is primarily focused on informing and aiding users targeted by state-sponsored attackers. However, the recent update broadens the scope to encompass individuals singled out by mercenary groups.

It’s worth noting that Apple refrains from attributing the attacks or subsequent threat notifications to specific threat actors or geographic regions.

“We are unable to provide information about what causes us to issue threat notifications, as that may help mercenary spyware attackers adapt their behavior to evade detection in the future,” Apple said.

The move comes as Apple intensifies its efforts to combat the proliferation of sophisticated commercial surveillance tools, exemplified by the likes of NSO Group's notorious Pegasus software, notorious for its deployment by state actors in clandestine operations against journalists, activists, politicians, and diplomats.

In November 2021, Apple filed a lawsuit against NSO Group, an Israeli tech firm behind the infamous Pegasus spyware, seeking to ban the firm from using any Apple software, services, or devices.


Back to the list

Latest Posts

Threat actors abusing Foxit PDF Reader flaw to deploy multiple malware variants

Threat actors abusing Foxit PDF Reader flaw to deploy multiple malware variants

The flaw involves Foxit PDF Reader's handling of pop-up messages.
20 May 2024
China-linked APT group uses malware to spy on commercial shipping

China-linked APT group uses malware to spy on commercial shipping

Mustang Panda infiltrated the computer systems of cargo shipping companies in Norway, Greece, and the Netherlands.
20 May 2024
The Grandoreiro malware is back up and running after January disruption

The Grandoreiro malware is back up and running after January disruption

Grandoreiro now targets over 1,500 banks worldwide, spanning more than 60 countries across Central and South America, Africa, Europe, and the Indo-Pacific region.
20 May 2024