Apple Outlines How It Will Notify Users Who Have Been Targeted by State-Sponsored Spyware Attacks

Earlier today, Apple announced that it had filed suit against NSO Group, the firm responsible for the Pegasus spyware that has been used in state-sponsored surveillance campaigns in a number of countries. NSO Group seeks to take advantage of vulnerabilities in iOS and other platforms to infiltrate the devices of targeted users such as journalists, activists, dissidents, academics, and government officials.

apple security banner
As part of its announcement, Apple revealed that it is notifying the "small number of users" who have been targeted via the FORCEDENTRY exploit for a now-patched vulnerability that allowed Pegasus to be installed on their devices. Apple also said that it will continue to notify users it believes have been targeted by state-sponsored spyware attacks "in accordance with industry best practices," and the company has now shared a new support document outlining how it will notify those users.

Notifications will be delivered to affected users via email and iMessage notifications to the addresses and phone numbers associated with the users' Apple IDs, with the notifications providing additional steps users can take to protect their devices. A prominent "Threat Notification" banner will also be displayed at the top of the page when affected users log into their accounts on the Apple ID web portal.

apple id threat notification
Users will never be asked to click links or install apps via the email and iMessage notifications, so users receiving notifications should always log into their ‌Apple ID‌ accounts on the web to verify that threat notifications have been issued for their accounts and to learn what to do next.

Apple acknowledges that there may be some false alarms with its notifications and that some attacks may go undetected, as it is facing constantly evolving tactics from state-sponsored attackers. Apple's threat-detection methods will similarly evolve, and so the company will not be sharing information on its methods to hinder efforts by attackers to evade detection.

Regardless of whether or not you receive a threat notification from Apple, the company advises all users to take the following steps to secure their devices:

  • Update devices to the latest software, as that includes the latest security fixes
  • Protect devices with a passcode
  • Use two-factor authentication and a strong password for ‌Apple ID‌
  • Install apps from the App Store
  • Use strong and unique passwords online
  • Don’t click on links or attachments from unknown senders

Finally, Apple shares a list of emergency resources at the Consumer Reports Security Planner website for those users who have not received an Apple threat notification but believe they may have been targeted by state-sponsored attackers to obtain expert assistance.

Note: Due to the political or social nature of the discussion regarding this topic, the discussion thread is located in our Political News forum. All forum members and site visitors are welcome to read and follow the thread, but posting is limited to forum members with at least 100 posts.

Popular Stories

Apple WWDC24 Apple Intelligence hero 240610

Apple Explains iPhone 15 Pro Requirement for Apple Intelligence

Wednesday June 19, 2024 4:48 am PDT by
With iOS 18, iPadOS 18, and macOS Sequoia, Apple is introducing a new personalized AI experience called Apple Intelligence that uses on-device, generative large-language models to enhance the user experience across iPhone, iPad, and Mac. These new AI features require Apple's latest iPhone 15 Pro and iPhone 15 Pro Max models to work, while only Macs and iPads with M1 or later chips will...
Apple Intelligence General Feature

Apple Intelligence Features Not Coming to European Union at Launch Due to DMA

Friday June 21, 2024 9:44 am PDT by
Apple today said that European customers will not get access to the Apple Intelligence, iPhone Mirroring, and SharePlay Screen Sharing features that are coming to the iPhone, iPad, and Mac this September due to regulatory issues related to the Digital Markets Act. In a statement to Financial Times, Apple said that there will be a delay as it works to figure out how to make the new...
iPhone 16 Pro Max Generic Feature 2

5 Biggest Changes Rumored for iPhone 16 Pro Max

Wednesday June 19, 2024 5:00 am PDT by
Given Apple's rumored plan to add an all-new high-end tier to its iPhone 17 series in 2025, this could be the year for Apple to bring its boldest "Pro Max" model to the table — the kind of iPhone 16 upgrade that stands tall above its siblings, both figuratively and literally. If you have been holding out for the iPhone 16 Pro Max, here are five of the biggest changes rumored to be coming...
Apple Vision Pro 2 Feature 2

Apple Reportedly Suspends Work on Vision Pro 2

Tuesday June 18, 2024 8:17 am PDT by
Apple has suspended work on the second-generation Vision Pro headset to singularly focus on a cheaper model, The Information reports. Apple was widely believed to have plans to divide its Vision product line into two models, with one "Pro" model and one lower-cost standard model. The company is said to have been deprioritizing the next Vision Pro headset over the past year, gradually...
back to school 2024

Apple's 2024 Back to School Sale Launches, Up to $150 Gift Card With Mac or iPad

Thursday June 20, 2024 4:29 am PDT by
Apple has launched its annual Back to School promotion for college students in the United States. This year's promotion offers a free Apple gift card with the purchase of an eligible Mac or iPad. Apple is also offering students 20% off AppleCare+ plans. Apple is offering a $150 gift card with any new MacBook Air, MacBook Pro, or iMac, and a $100 gift card with the purchase of any new M4 iPad ...
iOS 17

Apple Releases First Public Beta of iOS 17.6

Thursday June 20, 2024 10:18 am PDT by
Apple today seeded the first betas of upcoming iOS 17.6 and iPadOS 17.6 updates to public beta testers, with the betas coming a few days after the initial iOS and iPadOS 17.6 developer betas. Public beta testers can get the beta by opening up the Settings app, going to the Software Update section, tapping on the "Beta Updates" option, and toggling on the iOS 17 or iPadOS 17 Public Beta....

Top Rated Comments

ian87w Avatar
34 months ago
Good work Apple, and hopefully Apple can realize that its own mass scanning system is actually a risk to the security and privacy it's trying to protect.
Score: 28 Votes (Like | Disagree)
Gnattu Avatar
34 months ago

Will Apple also notify us when we are targeted by Apple created spyware attacks?
One example being CSAM.

No Apple will not . . . willingly. Once exposed by the public, Apple will try to make excuses to justify their own developed spyware.
Except they notified the public?:confused:
Score: 20 Votes (Like | Disagree)
max2 Avatar
34 months ago
Cool!

Way to go Apple.
Score: 19 Votes (Like | Disagree)
steve09090 Avatar
34 months ago

Will Apple also notify us when we are targeted by Apple created spyware attacks?
One example being CSAM.

No Apple will not . . . willingly. Once exposed by the public, Apple will try to make excuses to justify their own developed spyware.
How is CSAM spyware when they have been very open in telling people what it was and how it would work?
Score: 13 Votes (Like | Disagree)
btbeme Avatar
34 months ago
Serious about security and privacy. Serious enough to take on State players head-on.

While this really only affects a few dozen people globally, it is a signature for what governments and their minions are ready, capable, and willing to do. You can keep pretending that “you have nothing to hide” while your privacy (and many international and Constitutional laws) get whittled away… or you can stand up to this.

And don’t think for a minute that certain social media avenues aren’t part of this… willfully or not.
Score: 13 Votes (Like | Disagree)
goobot Avatar
34 months ago

It's important to boycott Israel, which is responsible for this software, as well:

https://www.nytimes.com/2021/11/08/world/middleeast/nso-israel-palestinians-spyware.html


If Apple can stop selling its products in Turkey because of economic concerns, it can certainly stop selling products in Israel for software concerns.
Lmao, let’s boycott a country because It has a company I don’t like, let’s boycott America cause Facebook exist and every other country in the world cause they all have only good players
Score: 11 Votes (Like | Disagree)