Apple Outlines How It Will Notify Users Who Have Been Targeted by State-Sponsored Spyware Attacks

Earlier today, Apple announced that it had filed suit against NSO Group, the firm responsible for the Pegasus spyware that has been used in state-sponsored surveillance campaigns in a number of countries. NSO Group seeks to take advantage of vulnerabilities in iOS and other platforms to infiltrate the devices of targeted users such as journalists, activists, dissidents, academics, and government officials.

apple security banner
As part of its announcement, Apple revealed that it is notifying the "small number of users" who have been targeted via the FORCEDENTRY exploit for a now-patched vulnerability that allowed Pegasus to be installed on their devices. Apple also said that it will continue to notify users it believes have been targeted by state-sponsored spyware attacks "in accordance with industry best practices," and the company has now shared a new support document outlining how it will notify those users.

Notifications will be delivered to affected users via email and iMessage notifications to the addresses and phone numbers associated with the users' Apple IDs, with the notifications providing additional steps users can take to protect their devices. A prominent "Threat Notification" banner will also be displayed at the top of the page when affected users log into their accounts on the Apple ID web portal.

apple id threat notification
Users will never be asked to click links or install apps via the email and iMessage notifications, so users receiving notifications should always log into their ‌Apple ID‌ accounts on the web to verify that threat notifications have been issued for their accounts and to learn what to do next.

Apple acknowledges that there may be some false alarms with its notifications and that some attacks may go undetected, as it is facing constantly evolving tactics from state-sponsored attackers. Apple's threat-detection methods will similarly evolve, and so the company will not be sharing information on its methods to hinder efforts by attackers to evade detection.

Regardless of whether or not you receive a threat notification from Apple, the company advises all users to take the following steps to secure their devices:

  • Update devices to the latest software, as that includes the latest security fixes
  • Protect devices with a passcode
  • Use two-factor authentication and a strong password for ‌Apple ID‌
  • Install apps from the App Store
  • Use strong and unique passwords online
  • Don’t click on links or attachments from unknown senders

Finally, Apple shares a list of emergency resources at the Consumer Reports Security Planner website for those users who have not received an Apple threat notification but believe they may have been targeted by state-sponsored attackers to obtain expert assistance.

Note: Due to the political or social nature of the discussion regarding this topic, the discussion thread is located in our Political News forum. All forum members and site visitors are welcome to read and follow the thread, but posting is limited to forum members with at least 100 posts.

Popular Stories

mac mini thermal architecture feature

New Mac Mini Has Modular Storage, 256GB Model Will Have Faster SSD

Friday November 8, 2024 7:06 am PST by
Apple has returned to using two 128GB storage chips in the new Mac mini with 256GB of storage, according to a partial teardown video shared on social media today. This means the base-model Mac mini with the M4 chip will not have significantly slower SSD speeds compared to higher-end configurations of the computer with 512GB, 1TB, or 2TB of storage, as multiple NAND chips allows for faster SSD...
Generic iOS 18

Everything New in iOS 18.2 Beta 2

Monday November 4, 2024 12:34 pm PST by
Apple today seeded the second betas of upcoming iOS 18.2 and iPadOS 18.2 updates to developers, and Apple is continuing to refine the Apple Intelligence capabilities. There are also a handful of smaller features that are worth knowing about. Find My Find My has a new option to Share Item Location with an "airline or trusted person" that can help you locate something that you've misplaced....
best buy holiday

Best Buy Reveals Black Friday Plans With Sitewide Sales Available Now

Friday November 8, 2024 10:05 am PST by
Black Friday sales are continuing today with Best Buy kicking off early Black Friday deals that will last for the next few days. Similar to other retailers, Best Buy's early Black Friday event includes sitewide savings on Apple products, headphones, TVs, monitors, video games, and more. Note: MacRumors is an affiliate partner with Best Buy. When you click a link and make a purchase, we may...
iphone passcode green

Cops Suspect iOS 18 iPhones Are Communicating to Force Reboots, Making Unlocking Harder

Thursday November 7, 2024 2:20 pm PST by
Law enforcement officials in Detroit, Michigan are warning other police officers about an alleged iPhone change that causes Apple devices stored for forensic examination to spontaneously restart, reports 404 Media. iPhones that are undergoing examination have apparently been rebooting, which makes them harder to unlock with brute force methods, and Michigan police think that it's due to a...
early apple watch black friday

The Best Early Black Friday Apple Watch Deals

Wednesday November 6, 2024 6:33 am PST by
Black Friday is just around the corner, and Apple Watch deals have begun appearing ahead of the shopping holiday on November 29. In this article, we'll take a look at all of the best early Black Friday Apple Watch deals, including the new Series 10 models. Note: MacRumors is an affiliate partner with some of these vendors. When you click a link and make a purchase, we may receive a small...
iCloud General Feature

Here's What's New in Apple's Updated iCloud Terms and Conditions Taking Effect Next Week

Friday September 13, 2024 7:39 am PDT by
Apple has started notifying users about an upcoming revision to its iCloud Terms and Conditions, which takes effect on Monday, September 16. We compared the text of the upcoming iCloud Terms and Conditions with the current U.S. version from September 18, 2023 and identified four key changes: "Apple ID" references have been changed to "Apple Account" throughout. iCloud users must agree to ...
M4 MacBook Pros Thumb

M4 MacBook Pro Reviews: Processor Benchmarks Impress, New Nano-Texture Option Worth the Extra $150

Thursday November 7, 2024 6:14 am PST by
The first wave of reviews of Apple's new M4-powered MacBook Pro models were published this morning. We've collected some of the latest impressions from YouTube channels and select media outlets below. Apple last month announced the new 14-inch and 16-inch MacBook Pro models, adding next-generation M4, M4 Pro, and M4 Max chips, with Thunderbolt 5 ports on higher-end models, display and camera ...

Top Rated Comments

ian87w Avatar
39 months ago
Good work Apple, and hopefully Apple can realize that its own mass scanning system is actually a risk to the security and privacy it's trying to protect.
Score: 28 Votes (Like | Disagree)
Gnattu Avatar
39 months ago

Will Apple also notify us when we are targeted by Apple created spyware attacks?
One example being CSAM.

No Apple will not . . . willingly. Once exposed by the public, Apple will try to make excuses to justify their own developed spyware.
Except they notified the public?:confused:
Score: 20 Votes (Like | Disagree)
max2 Avatar
39 months ago
Cool!

Way to go Apple.
Score: 19 Votes (Like | Disagree)
steve09090 Avatar
39 months ago

Will Apple also notify us when we are targeted by Apple created spyware attacks?
One example being CSAM.

No Apple will not . . . willingly. Once exposed by the public, Apple will try to make excuses to justify their own developed spyware.
How is CSAM spyware when they have been very open in telling people what it was and how it would work?
Score: 13 Votes (Like | Disagree)
btbeme Avatar
39 months ago
Serious about security and privacy. Serious enough to take on State players head-on.

While this really only affects a few dozen people globally, it is a signature for what governments and their minions are ready, capable, and willing to do. You can keep pretending that “you have nothing to hide” while your privacy (and many international and Constitutional laws) get whittled away… or you can stand up to this.

And don’t think for a minute that certain social media avenues aren’t part of this… willfully or not.
Score: 13 Votes (Like | Disagree)
goobot Avatar
39 months ago

It's important to boycott Israel, which is responsible for this software, as well:

https://www.nytimes.com/2021/11/08/world/middleeast/nso-israel-palestinians-spyware.html


If Apple can stop selling its products in Turkey because of economic concerns, it can certainly stop selling products in Israel for software concerns.
Lmao, let’s boycott a country because It has a company I don’t like, let’s boycott America cause Facebook exist and every other country in the world cause they all have only good players
Score: 11 Votes (Like | Disagree)