Skip to main content

An iPhone just blocked one of the worst spyware attacks on the planet

Apple released an “extreme safety” measure bundled with iOS 16 last summer, and it’s targeted at sophisticated spyware that is usually deployed covertly against government agencies. It appears that Apple’s safety tool is effective, to a certain extent, against Pegasus — one of the most devastating surveillance attacks ever documented. 

Citizen Lab, the security group based at the University of Toronto’s Munk School of Global Affairs & Public Policy, has detailed a pair of zero-click exploits that targeted iOS 15 and iOS 16 devices last year. Labeled PWNYOURHOME and FINDMYPWN, these exploits were widely used by Pegasus-maker NSO Group against targets in Mexico and elsewhere.

Lockdown Mode information page on an iPhone 14 Pro.
Joe Maring/Digital Trends

The security lab notes that on iPhones with Lockdown Mode enabled, the target got real-time notifications if the Pegasus spyware tried to exploit the PWNYOURHOME vulnerability. NSO Group may have eventually devised a workaround against the alert system, but in general, there is no evidence that the aforementioned security flaw was abused on any device with Lockdown mode enabled.  

Recommended Videos

“Given that we have seen no indications that NSO has stopped deploying PWNYOURHOME, this suggests that NSO may have figured out a way to correct the notification issue, such as by fingerprinting Lockdown Mode,” Citizen Lab writes in its exhaustive report.

The security lab suggests that all at-risk users should enable Lockdown Mode to ensure that they don’t become the next targets of Pegasus-fueled illicit surveillance — or any such spyware that is virtually impossible to detect in the wild.

Example of an iPhone with Lockdown Mode blocking attacks from Pegasus spyware.
Example of Lockdown Mode blocking a Pegasus attack Citizen Lab

Apple says Lockdown Mode is aimed at “very few individuals who, because of who they are or what they do, might be personally targeted by some of the most sophisticated digital threats.” As such, it trades security with your average smartphone functionalities. For example, it disables certain messages, blocks access to a bunch of websites, and blocks FaceTime calls from unknown contacts, among other connectivity restrictions. 

But as they say, you can never be too sure about your security. As far as Pegasus goes, it has been deployed against journalists, activists, high-ranking officials, and political figures all across the globe. And it’s the zero-click nature of this surveillance agent and how it covertly mines almost every kind of sensitive information — from calls logs and emails to storage content — that makes it a favorite of bad actors seated in positions of state power.

With proof that Lockdown Mode is effective at stopping the spyware, anyone even remotely concerned about being targeted by Pegasus (or similar attacks) should seriously consider enabling Lockdown Mode on their iPhone ASAP.

Nadeem Sarwar
Nadeem is a tech journalist who started reading about cool smartphone tech out of curiosity and soon started writing…
It’s the end of the road for these two iPhone models
Apple iPhone 6S Plus

Seeing your favorite handheld gaming device in a retro store has a unique way of making you feel old, but Apple might have topped it. According to the company, the iPhone XS Max and iPhone 6s Plus are now "vintage." They join the ranks of the iPhone 4 and even the iPad Pro 12.9-inch model.

It's not wholly unexpected. Apple declares a device vintage after five years, and that means it becomes more difficult to have that device repaired or to find replacement parts for it. Obsolete is applied to products that are more than seven years old, but sometimes certain variants get that label early.

Read more
Google Gemini arrives on iPhone as a native app
the Google extensions feature on iPhone

Google announced Thursday that it has released a new native Gemini app for iOS that will give iPhone users free, direct access to the chatbot without the need for a mobile web browser.

The Gemini mobile app has been available for Android since February, when the platform transitioned from the older Bard branding. However, iOS users could only access the AI on their phones through either the mobile Google app or via a web browser. This new app provides a more streamlined means of chatting with the bot as well as a host of new (to iOS) features.

Read more
I tried a new Android phone that puts some of the best smartphone cameras to shame
The rear camera setup on the Oppo Find X8 Pro.

It’s been a few years since I was surprised by a smartphone camera’s zoom performance. With Samsung offering 100x zoom on its Galaxy S Ultra lineup, little has shocked me with smartphone cameras — until now.

The Oppo Find X8 series is the successor to the Find X7 series from last year, and alongside several other improvements, there’s also been a significant upgrade in one area: the 30x zoom. Oppo and OnePlus have great cameras at shorter zoom distances, and at a recent briefing, I discovered that we can now add the 30x zoom to the list.

Read more