Apple warns Russian journalists of Pegasus iPhone infections
Apple has started to warn Russian journalists that they are the targets of attacks using Pegasus, spyware used by governments to hack and monitor iPhones.
Pegasus is well known for being a tool by governments and law enforcement agencies around the world for covertly monitoring the activities of people of interest, including activists and journalists. In the latest reporting on the malware-based tool, it is now allegedly being used against journalists covering Russia.
According to the New York Times, Apple has proactively been sending notifications to journalists and media workers for Russian news outlets, advising that they have become the target of "state-sponsored hackers."
Reports from Wednesday revealed that Apple had warned of a possible state-sponsored attack of Meduza publisher Galina Timchenko, a Russian publication operating in exile. Timchenko's iPhone was infected in Germany just two weeks after the newspaper was deemed an "undesirable organization" in January by Russia.
By Thursday, former editor of Current Time Yevgeny Erlich revealed on social media that he had received the same Apple warning. Maria Epirfanova and Evgeniy Pavlov of Novaya Gazeta Europe had the same warnings.
Apple does send out notifications about threats from state-sponsored attackers, and has an entire support page explaining what they are and what users should do to lock down their accounts.
Despite the international criticism of Pegasus, as well as its development by the NSO Group, the tool continues to be worked on, and be used for surveillance purposes. In May, it was claimed that at least a dozen victims in Armenia were targeted by Pegasus, which became the first recorded use of the iPhone spyware in a military conflict.
Read on AppleInsider
Comments
"Apple threat notifications are designed to inform and assist users who may have been targeted by state-sponsored attackers. These users are individually targeted because of who they are or what they do. Unlike traditional cybercriminals, state-sponsored attackers apply exceptional resources to target a very small number of specific individuals and their devices, which makes these attacks much harder to detect and prevent. State-sponsored attacks are highly complex, cost millions of dollars to develop, and often have a short shelf life. The vast majority of users will never be targeted by such attacks."
https://blog.google/threat-analysis-group/googles-efforts-to-identify-and-counter-spyware/