Apple sends ominous ‘threat’ notifications to users in 92 countries

Users warned about ‘mercenary spyware’ for the first time

Andrew Griffin
Thursday 11 April 2024 22:22 BST
Comments
(Getty Images)

Your support helps us to tell the story

From reproductive rights to climate change to Big Tech, The Independent is on the ground when the story is developing. Whether it's investigating the financials of Elon Musk's pro-Trump PAC or producing our latest documentary, 'The A Word', which shines a light on the American women fighting for reproductive rights, we know how important it is to parse out the facts from the messaging.

At such a critical moment in US history, we need reporters on the ground. Your donation allows us to keep sending journalists to speak to both sides of the story.

The Independent is trusted by Americans across the entire political spectrum. And unlike many other quality news outlets, we choose not to lock Americans out of our reporting and analysis with paywalls. We believe quality journalism should be available to everyone, paid for by those who can afford it.

Your support makes all the difference.

iPhone users in 92 countries have received ominous notifications informing them they may have been victim of “mercenary spyware” attacks.

The alerts warn users that hackers have attempted to “compromise” their phones. It does not necessarily mean that the device has actually been compromised.

Previously, Apple’s threat notifications had been focused on “state-sponsored attackers”, and the company said that most people who received them would likely do so because they had been attacked by hostile governments.

But the new warnings do not specifically point to state-sponsored attacks. Apple also updated the warning of an information page on its website to reference “mercenary spyware attacks”.

If a user receives one, it means that Apple has “high confidence” that a user has been individually targeted, Apple says, and that it “should be taken seriously”. Apple does not give detailed information on the alerts, including why it has issued them, saying that doing so would make it easier for attackers to evade them.

The attacks are “more complex than regular cybercriminal activity and consumer malware, as mercenary spyware attackers apply exceptional resources to target a very small number of specific individuals and their devices”, Apple’s website reads..

“Mercenary spyware attacks cost millions of dollars and often have a short shelf life, making them much harder to detect and prevent. The vast majority of users will never be targeted by such attacks.”

When users receive the notification, they will receive an email and text message warning them that they may have been attacked. A notification will also show when they log into Apple’s website.

The notifications advise users to increase their security and check their settings. It suggests that they may enable Lockdown Mode, for instance, a tool that limits some features to minimise the possible ways that attackers might break into a phone.

Apple advises that all users should keep their phones up to date, protect them with a passcode, use two-factor authentication and a strong password, and not click on links or attachments from unknown senders.

Join our commenting forum

Join thought-provoking conversations, follow other Independent readers and see their replies

Comments

Thank you for registering

Please refresh the page or navigate to another page on the site to be automatically logged inPlease refresh your browser to be logged in