Apple Issues Authentic Alert About Detected Spyware
A Straightforward Guide on Apple's Mercenary Spyware Warnings
In today's digital world, getting a strange message might not be much to worry about. But, when it comes from Apple, warning you about a potential mercenary spyware attack, you better pay attention!
Yes, you heard that right! Apple has actually issued warnings to users about such attacks, as recently as this week. Two of the recipients included Ciro Pellegrino, an Italian journalist, and Dutch right-wing activist, Eva Vlaardingerbroek.
Here's an example of the alert you might receive:
"Apple detected that you are being targeted by a mercenary spyware attack that is trying to remotely compromise the iPhone associated with your Apple ID -xxx-... This attack is likely targeting you specifically because of who you are or what you do. Although it's never possible to achieve absolute certainty when detecting such attacks, Apple has high confidence in this warning - please take it seriously."
Interestingly, Apple has sent out similar alerts before, in July and April of 2024. Since 2021, they've issued warnings to over 150 countries. However, they keep the specifics of these attempts to a minimum, preferring not to reveal their methods of detection.
So, who are these alerts usually meant for? Not the everyday iPhone user. Most of the targeted individuals are in high-profile positions, such as politicians, journalists, activists, and diplomats - people who expose secrets or have power that others in position might want to stop.
One of the most dangerous types of spyware used in these attacks is Pegasus, created by the Israeli-based NSO Group. It can silently infect iPhones and Androids in a "zero-click" attack, allowing criminals to track almost everything the target does on their smartphone.
What to Do if You Receive an Alert:
- Verify the alert is real. Apple sends these alerts via iMessage and email: iMessage alerts come from [[email protected]], while email alerts come from [[email protected]]. Before April of this year, Apple sent both from the @apple.com domain.
- Sign into appleid.apple.com and check for the threat notification at the top of the page. If Apple really sent you one, you'll see it here. If not, consider the message a scam.
- Apple advises against clicking links, opening files, or installing apps/profiles in these alerts. They never ask for these actions.
- Reach out to the non-profit Access Now and use their Digital Security Helpline for guidance.
- Apple strongly recommends enabling Lockdown Mode on your Apple devices if you are in a high-risk profession. This mode restricts functions to minimize potential vulnerabilities. Follow our guide here to enable Lockdown Mode to protect yourself.
- Tech giants like Apple are increasingly alerting users about potential mercenary spyware attacks, with reports of such alerts emerging as recently as Wednesday.
- In these alerts, Apple warns users about malicious attempts to compromise their iPhones, suggesting they could be targeted because of who they are or what they do, in a fact that underscores the increasing threats to cybersecurity in the realm of data-and-cloud-computing and technology.
- Pegasus, a dangerous type of spyware created by the Israeli-based NSO Group, has been linked to these attacks, capable of silently infecting iPhones and Androids in a 'zero-click' attack, allowing criminals to track nearly everything the target does on their smartphone.
- If users do receive an Apple spyware alert, they should verify its authenticity, sign into appleid.apple.com to check for the threat notification, avoid clicking links or opening files, and seek guidance from the non-profit Access Now's Digital Security Helpline.
- For those in high-risk professions such as politics, journalism, activism, and diplomacy, Apple strongly recommends enabling Lockdown Mode on their devices to minimize potential vulnerabilities - a security measure that can significantly reduce the risk of being compromised by malicious spyware.
