2 min read

Apple to Combat Mercenary Spyware with New ‘Lockdown Mode’

Filip TRUȚĂ

July 07, 2022

Ad One product to protect all your devices, without slowing them down.
Free 90-day trial
Apple to Combat Mercenary Spyware with New ‘Lockdown Mode’

In a bid to protect users who may be at risk of targeted cyberattacks, Apple Inc has announced plans to introduce new ways to combat spyware in its upcoming OS upgrades – both mobile and desktop.

The latest beta versions of iOS and macOS seeded to registered Apple developers now include ”Lockdown Mode,“ a feature described as an optional defense for the small subset of users most at risk of targeted threats to their digital security.

‘Extreme’ security

The feature, to be released publicly with the launch of iOS 16 and macOS Ventura later this year, “offers an extreme, optional level of security for the very few users who, because of who they are or what they do, may be personally targeted by some of the most sophisticated digital threats, such as those from NSO Group and other private companies developing state-sponsored mercenary spyware,” Apple said.

Turning on Lockdown Mode hardens defenses but limits certain functionalities, “sharply reducing the attack surface that potentially could be exploited by highly targeted mercenary spyware,” according to the tech giant.

The feature is still in development, with Apple promising to strengthen it over time. According to the press release from Cupertino, Lockdown Mode will tick the following boxes at launch:

· Messages: Most message attachment types other than images are blocked. Some features, like link previews, are disabled.

· Web browsing: Certain complex web technologies, like just-in-time (JIT) JavaScript compilation, are disabled unless the user excludes a trusted site from Lockdown Mode.

· Apple services: Incoming invitations and service requests, including FaceTime calls, are blocked if the user has not previously sent the initiator a call or request.

· Wired connections with a computer or accessory are blocked when the iPhone is locked.

· Configuration profiles cannot be installed, and the device cannot enroll into mobile device management (MDM), while Lockdown Mode is turned on.

The iPhone maker has also introduced a category in the Apple Security Bounty program to reward researchers who find Lockdown Mode bypasses. Bounties for qualifying findings can reach up to $2 million – the highest payout in the bug bounty game, Apple said.

Joint efforts to fight spyware

In November 2021, Apple hit NSO Group with a lawsuit alleging that the Israeli tech firm, through its Pegasus spyware, enabled extensive state-sponsored hacking of its products.

In January 2022, the US National Counterintelligence and Security Center (NCSC) and the Department of State issued a joint alert warning citizens of zero-click malware that can “access and retrieve virtually all content on a phone.” The advisory didn’t name any specific malware, but described Pegasus’ functionality in detail, with no omissions.

A month later, the European Data Protection Supervisor (EDPS) issued a report calling for a ban on modern spyware tools.

Bitdefender Mobile Security detects Pegasus spyware on both iOS and Android.

tags


Author



Right now

Top posts

August Spam Debrief: Bitdefender Labs Warns of Fraud Campaigns Exploiting the Russia-Ukraine War

August Spam Debrief: Bitdefender Labs Warns of Fraud Campaigns Exploiting the Russia-Ukraine War

August 31, 2022

4 min read
Snake Keylogger Returns in Malspam Campaign Disguised as Business Portfolio from IT Vendor

Snake Keylogger Returns in Malspam Campaign Disguised as Business Portfolio from IT Vendor

August 30, 2022

2 min read
What is medical identity theft and how to protect against it

What is medical identity theft and how to protect against it

July 27, 2022

2 min read
Curious about Omegle? Here’s how the roulette-style chat platform can threaten your online privacy and security

Curious about Omegle? Here’s how the roulette-style chat platform can threaten your online privacy and security

July 07, 2022

5 min read
Identifying and Dealing with Online Bullying Is Not Impossible - School Presentation Inside

Identifying and Dealing with Online Bullying Is Not Impossible - School Presentation Inside

June 28, 2022

2 min read
Let’s Celebrate World Social Media Day by Improving Your Privacy and Security Online

Let’s Celebrate World Social Media Day by Improving Your Privacy and Security Online

June 28, 2022

3 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

Student data leaked after LA school district says it won't pay ransom Student data leaked after LA school district says it won't pay ransom
Graham CLULEY

October 03, 2022

2 min read
Russians Attempting Draft Evasion Help Scam Market Thrive Russians Attempting Draft Evasion Help Scam Market Thrive
Vlad CONSTANTINESCU

October 03, 2022

1 min read
Ransomware Attacks on Home Users Are Frighteningly Common, Bitdefender Data Reveals. Here Are 3 Tips to Stay Safe at Home Ransomware Attacks on Home Users Are Frighteningly Common, Bitdefender Data Reveals. Here Are 3 Tips to Stay Safe at Home
Filip TRUȚĂ

October 03, 2022

3 min read