.jpeg)
Apple has raised concerns about the threat of spyware attacks like Pegasus on iPhones. According to a report by the Economic Times, iPhone users are being targeted through 'Mercenary Spyware' to gain access to their devices.
In response, Apple has sent warning emails to its users in India and 91 other countries who may be vulnerable to the 'Mercenary Spyware' attack. This spyware, similar to Israel's NSO Group's Pegasus, aims to gain unauthorized access to devices.
Mercenary spyware attackers use significant resources to target specific individuals and their devices. The cost of these spyware attacks can amount to millions of dollars, making detection and prevention challenging.
Apple sent warning emails to some Indian users around 12:30 AM on April 11. The subject line reads: "Alert: Apple has detected a targeted Mercenary Spyware attack on your iPhone." The email warns users about attempts to remotely hack their iPhones connected to their Apple IDs.
Mercenary spyware attacks are sophisticated and rare, with much higher sophistication compared to regular cybercriminal activity or consumer malware. These attacks can compromise sensitive data, communication, and even access to cameras and microphones.
How does spyware work?
1. It infiltrates your device: This can happen when you visit an unsafe website, unknowingly install an unsafe app, or even open a file attachment.
2. It captures your data: Once spyware is on your device, it starts gathering data, including your web activity, screen captures, and keystrokes.
3. It shares data with third parties: After capturing data, the spyware creator may either use it directly or sell it to third parties. Data may include credit card and bank login details.
Last year in October, Apple sent threat notifications in several countries, including India, regarding 'State-Sponsored' attacks. In India, opposition leaders like Mahua Moitra from TMC and Shashi Tharoor from Congress, along with some journalists, received these notifications.
According to Apple's website, threat notifications are designed to inform and assist users targeted by state-sponsored attackers. These notifications provide information on steps to secure the phone, including enabling lockdown mode and limiting apps, websites, and features.
Lockdown mode helps protect devices from extremely rare and highly sophisticated cyber attacks. When enabled, the device functions differently than usual, with some apps, websites, and features restricted.
For security, follow these three steps:
1. Update your devices with the latest software, which includes the latest security fixes.
2. Protect devices with a passcode. Use two-factor authentication for Apple ID and strong passwords.
3. Install apps only from the App Store. Avoid clicking on links or attachments from unknown senders. Use strong and unique passwords.