Apple Says No One Using Lockdown Mode Has Been Hacked With Spyware

Almost 4 years aft launching a information characteristic called Lockdown Mode, Apple says it has yet to spot a lawsuit wherever someone’s instrumentality was hacked pinch these further information protections switched on. 

“We are not alert of immoderate successful mercenary spyware attacks against a Lockdown Mode-enabled Apple device,” Apple spokesperson Sarah O’Rourke told TechCrunch connected Friday.

It’s nan tech giant’s astir caller affirmation that Apple devices pinch Lockdown Mode tin withstand authorities spyware attacks, aft first making nan claim a twelvemonth aft nan information feature’s debut.

Apple successful 2022 announced Lockdown Mode, an opt-in bid of information protections that switches disconnected definite features successful iPhones and different Apple devices that are commonly exploited to hack targets pinch spyware. Apple specifically released this information mode to thief at-risk customers take sides themselves from nan threats posed by authorities spyware made by companies for illustration Intellexa, NSO Group, and Paragon Solutions.

In caller years, Apple has conceded that its customers tin beryllium hacked by spyware and has been much proactive astir notifying customers who person been targeted.

Apple has sent galore batches of notifications to users successful complete 150 countries, alerting them that they whitethorn person been hacked pinch spyware, which shows really overmuch visibility nan institution now has connected these types of attacks. Apple has ne'er said really galore users it has notified, but it’s apt adjacent to presume location person been dozens, if not more.

Image Credits:Apple (supplied)

Digital authorities organizations for illustration Amnesty International and nan University of Toronto’s Citizen Lab person documented respective successful attacks connected iPhone users, nary of which person mentioned a bypass of Lockdown Mode. In astatine slightest two cases, Citizen Lab researchers publically said they had seen Lockdown Mode actively artifact spyware attacks, one carried retired pinch NSO’s Pegasus, nan different with Predator spyware, made by a institution now portion of Intellexa.

In astatine slightest 1 documented lawsuit of a spyware onslaught targeting iPhones, information researchers astatine Google said nan spyware would bail retired of trying to infect nan unfortunate if it detects Lockdown Mode, apt arsenic a measurement to evade detection.

Patrick Wardle, an Apple cybersecurity master and critic, says that Lockdown Mode is an important characteristic that makes it much difficult for spyware makers to onslaught Apple users.

“I deliberation it’s safe to say, Lockdown Mode is 1 of nan astir fierce consumer-facing hardening features ever shipped,” he told TechCrunch. 

Wardle explained that by “shrinking nan onslaught surface,” Lockdown Mode eliminates galore techniques usually utilized to utilization nan iPhone, and forces spyware makers to usage much analyzable and costly techniques to develop.

“It kills full transportation mechanisms/exploit classes,” he added, “as it blocks astir connection attachment types, restricts WebKit features. This is really a immense simplification successful remotely reachable onslaught surface, particularly for zero-click utilization chains,” referring to hacks that tin target group complete nan net without immoderate relationship from nan victim.

It’s imaginable that Lockdown Mode has been bypassed, and neither Apple nor independent investigators person caught nan attack. But fixed that Apple is typically publically tight-lipped astatine nan champion of times, its latest connection marks a important milestone for Lockdown Mode.

I person utilized Lockdown Mode for years, and I hardly deliberation astir it — except erstwhile it pops up notifications that tin beryllium occasionally confusing. Some features that person been switched disconnected require you to return an other step, specified arsenic copying and pasting links from matter messages to your browser. That’s why I, and respective integer information experts, urge anyone worried astir being targeted by spyware aliases integer attacks to move connected Lockdown Mode.