Just days after Apple filed a lawsuit against the Israeli firm NSO Group for the surveillance and targeting of Apple users with the Pegasus spyware, the tech giant has also detailed how it detects traces and activities that are generally consistent with a state-sponsored spyware attach on a user.

Google, meanwhile, continues to face its own set of challenges with regards to curbing spyware on Android, including fragmentation, which it hasn’t been able to tackle in years.

This is the first time that Apple has shared details about the subsequent notifications that are sent to users about the possible threat, and the possible corrective measures. Apple confirms the FORCEDENTRY exploit that Pegasus spyware used to its advantage, has since been patched for all iPhone users.

At present, the latest iOS 15.1.1 version is available for all iPhone users, which includes security improvements and other performance updates. One of them is the updated BlastDoor security layer, which now detects and stops any suspicious data being sent to iMessage. Apple says that while NSO Group spyware continues to evolve, they haven’t observed any evidence of successful remote attacks against devices running iOS 15 and later versions. Perhaps the push you need to update your iPhone?

Google’s struggles compounded by older Android

Google’s challenges with Android, the preferred smartphone platform for more than 3 billion users globally, aren’t getting easier. Problems aren’t solved by the fact that Android still struggles with serious fragmentation, which sees millions of phones running older Android versions that aren’t always as secure as the newer ones.

According to numbers by research firm Statcounter, the older Android 11 (33.2%) and Android 10 (28.57%) are still the most used Android iterations globally – that is as of the end of October 2021. Android 12 isn’t available on many phones yet, months after its release for Google’s own Pixel phones.

Threat level: Very sophisticated

A report by security firm Sophos, released earlier this week, says new variants of a spyware being used by a threat actor group called C-23, continue to target individuals based in the Middle East.

“The new variants appear in the form of an app that purports to install updates on the target’s phone, with names that include App Updates, System Apps Updates, or Android Update Intelligence. Sophos suspects that the apps are delivered to specific users by means of SMS text messages linking to downloads,” says Pankaj Kohli, researcher at SophosLabs.

Researchers at mobile security form Zimperium have noted in a new report that a spyware campaign is targeting Android phone users in South Korea.

Also Read: Trail gone cold: How private cryptos camouflage transactions for anonymity

The spyware, called PhoneSpy, has been discovered inside 23 popular Android apps distributed on platforms other than the Google Play Store. It has access to a user’s phone camera to take photos or record videos, access data and microphone.

The Pegasus spyware allowed attackers access to a compromised Android phone or iPhone’s data on the device as well as the microphone and camera. Using the FORCEDENTRY exploit, malicious data packages were sent to these devices, without the knowledge of those using these phones, to install Pegasus. While Apple IDs were created specifically for this purpose, Apple says their servers were not compromised as these spyware attacks were being mounted.

Pegasus isn’t the only spyware that has been in the news recently. Earlier this year, it was revealed that a sophisticated spyware called Karma, which also relied on using iMessage as the medium for delivering the compromised data packages to install the spyware, was being used to snoop on activists, diplomats, and journalists, since 2016.

Different signatures of well-funded spyware

The thing about state-sponsored malware, such as Pegasus, is that these are incredibly sophisticated tools. Often a result of being well-funded, since resources aren’t always a limitation, in such cases.

However, Apple admits that there may also be false alarms, but that’s all they’d say. “We are unable to provide information about what causes us to issue threat notifications, as that may help state-sponsored attackers adapt their behavior to evade detection in the future,” reads the latest security advisory.

This comes as Apple has filed a lawsuit against the NSO Group for the sophisticated attack on Apple devices (and indeed Android phones, globally) using the Pegasus spyware. “State-sponsored actors like the NSO Group spend millions of dollars on sophisticated surveillance technologies without effective accountability. That needs to change,” says Craig Federighi, Apple’s senior vice-president of software engineering, in a statement.

Any Apple user being targeted by state-sponsored malware will get notifications on phone numbers associated with the Apple ID via iMessage, and on the email addresses linked with the same ID as well.

You’ll be asked to visit your Apple ID account online (that’s available at appleid.apple.com) and you’ll see a threat notification banner, which will have further details about the threat detection and time as well as location specifics.

Sign on to read the HT ePaper epaper.hindustantimes.com

TECH NEWS RELATED

Report: Snap and Facebook use App Tracking Transparency loophole to continue sharing ‘aggregated’ user data

With the launch of iOS 14.5 earlier this year, Apple rolled out its new App Tracking Transparency capability. This privacy feature is designed to give users the ability to opt out of being tracked across other apps and services, but a new report from the Financial Times today details ...

View more: Report: Snap and Facebook use App Tracking Transparency loophole to continue sharing ‘aggregated’ user data

Next-gen AirPods Pro could bring new design, better chip in late 2022

They could look a little like this. Concept: Killian Bell/Cult of Mac We could be waiting close to a year for Apple’s much-anticipated AirPods Pro upgrade, but according to one analyst, it will be well worth the wait. The next-generation buds are expected to deliver a brand-new design and ...

View more: Next-gen AirPods Pro could bring new design, better chip in late 2022

Best thin cases for iPhone 13 Pro 2021

Best thin cases for iPhone 13 Pro iMore 2021 You’ve got a gorgeous iPhone 13 Pro, and you want to keep it looking that way. You know you need one of the best iPhone 13 Pro cases, but you don’t want to bulk up your iPhone or obscure its sleek ...

View more: Best thin cases for iPhone 13 Pro 2021

Google may replicate smartphone concept in global markets

AgenciesGoogle, which in partnership with Reliance Jio, launched a low-cost smartphone for India earlier this year may replicate the concept in global markets, a top executive told ET.The JioPhone Next, which runs on the Pragati OS custom-made Android operating system and is targeted at first-time internet users, offers Google a ...

View more: Google may replicate smartphone concept in global markets

Best deals Dec. 8: $299 iPad Pro Magic Keyboard in white, $999 M1 MacBook Pro, more!

AppleInsider is supported by its audience and may earn commission as an Amazon Associate and affiliate partner on qualifying purchases. These affiliate partnerships do not influence our editorial content. Wednesday’s best deals include big Netgear router discounts, 35% off a Samsung 4K monitor, $140 off a Sabrent 2TB M.2 ...

View more: Best deals Dec. 8: $299 iPad Pro Magic Keyboard in white, $999 M1 MacBook Pro, more!

The best notes apps for iPhone and iPad

AppleInsider is supported by its audience and may earn commission as an Amazon Associate and affiliate partner on qualifying purchases. These affiliate partnerships do not influence our editorial content. Whether you need to jot down a phone number, figure out your shopping list, or capture crucial meeting details, a ...

View more: The best notes apps for iPhone and iPad

Apple reportedly allowing 'looser' adherence to ad privacy rules & requirements

AppleInsider is supported by its audience and may earn commission as an Amazon Associate and affiliate partner on qualifying purchases. These affiliate partnerships do not influence our editorial content. Certain big tech app developers are claiming that they are still able to derive “user-level” details, leading to a report ...

View more: Apple reportedly allowing 'looser' adherence to ad privacy rules & requirements

Google Photos' 'Best of 2021' Memories collection begins rolling out

Source: Nick Sutrich / Android Central What you need to know Google Photos’ “Best of 2021” Memories collection has started rolling out. The collection highlights some of the “best” photos that you uploaded to the service over the last twelve months. You’ll be able to view the new collection alongside ...

View more: Google Photos' 'Best of 2021' Memories collection begins rolling out

YouTube stays on Roku devices as companies strike multi-year deal

Apple iPhone 13 Pro Max Price in Malaysia & Specs

Apple iPhone 13 Pro Price in Malaysia & Specs

Satechi launches new Thunderbolt 4 dock, two USB-C hubs

Roku, Google strike deal to keep YouTube on Rokus, restore YouTube TV

Roku and Google reach last minute ‘multi-year’ deal to keep YouTube app, bring back YouTube TV

Satechi launches Thunderbolt 4 Dock for the new MacBook Pro alongside two USB-C hubs

Google and Roku strike a deal to keep YouTube and YouTube TV on the platform

YouTube TV is finally coming back to Roku after a prolonged dispute

How to free up iPhone storage without deleting your apps or photographs

How to recover deleted files on Mac with 4DDiG Mac Data Recovery Software

Razer just revealed an RGB cooling fan accessory for both iPhone and Android devices

OTHER TECH NEWS

;