Apple Warns Users in 92 Countries About Mercenary Spyware Attacks

Apple on Wednesday sent threat notifications to users in 92 countries warning that they may have been targeted by mercenary spyware attacks, likely because of who they are or what they do.

apple security banner
According to TechCrunch, Apple sent the alerts to the individuals at 12 p.m. Pacific Time, delivered via email and iMessage using the contact details associated with the user's Apple ID. A notification also appears at the top of the page if the user signs into appleid.apple.com.

"Apple detected that you are being targeted by a mercenary spyware attack that is trying to remotely compromise the iPhone associated with your Apple ID -xxx-," the company wrote in the warning to affected customers. "We are unable to provide more information about what caused us to send you this notification, as that may help mercenary spyware attackers adapt their behavior to evade detection in the future."

"This attack is likely targeting you specifically because of who you are or what you do. Although it's never possible to achieve absolute certainty when detecting such attacks, Apple has high confidence in this warning — please take it seriously," added the warning.

In an updated support document, Apple said it has sent similar threat notifications to users in over 150 countries since 2021. "The extreme cost, sophistication, and worldwide nature of mercenary spyware attacks makes them some of the most advanced digital threats in existence today," said the company. "As a result, Apple does not attribute the attacks or resulting threat notifications to any specific attackers or geographical regions."

Last October, Apple sent similar warnings to some journalists and politicians in India. Soon after, nonprofit advocacy group Amnesty International reported that it had found Israeli cyber-arms company NSO Group's invasive spyware Pegasus on the iPhones of prominent journalists in India. Users in India are among those who received the latest threat notifications, according to people familiar with the matter who spoke to TechCrunch.

The alerts come at a time when many nations are preparing for democratic elections. Apple previously described the attackers as "state-sponsored" in the support document, but has replaced those references with "mercenary spyware attacks." The warning to customers reads: "Mercenary spyware attacks, such as those using Pegasus from the NSO Group, are exceptionally rare and vastly more sophisticated than regular cybercriminal activity or consumer malware."

Apple advises those who have received a threat notification to seek expert help, such as the rapid-response emergency security assistance provided by the Digital Security Helpline at the nonprofit Access Now. Apple threat notification recipients can contact the Digital Security Helpline 24 hours a day, seven days a week through their website.

Users who have not received an Apple threat notification but have good reason to believe they may be individually targeted by mercenary spyware attacks are advised to enable Lockdown Mode on their devices for additional protection.

Popular Stories

iPhone SE 4 Thumb 1

iPhone SE 4 With Apple's Own 5G Modem 'Confirmed' to Launch in March

Tuesday November 19, 2024 12:12 pm PST by
Barclays analyst Tom O'Malley and his colleagues recently traveled to Asia to meet with various electronics manufacturers and suppliers. In a research note this week, outlining key takeaways from the trip, the analysts said they have "confirmed" that a fourth-generation iPhone SE with an Apple-designed 5G modem is slated to launch towards the end of the first quarter next year. In line with previo...
at t turbo indicator iphone 16 pro max v0 8hrh7w5f3w1e1

AT&T Turbo Indicator Showing Up in iPhone Status Bar for Subscribers

Wednesday November 20, 2024 3:42 am PST by
AT&T has begun displaying "Turbo" in the iPhone carrier label for customers subscribed to its premium network prioritization service, according to reports on Reddit. The new indicator seems to have started appearing after users updated to iOS 18.1.1, but that could be just coincidence. Image credit: Reddit user No_Highlight7476 The Turbo feature provides enhanced network performance through ...
Generic iOS 18 Feature Real Mock

Apple Releases iOS 18.1.1 and iPadOS 18.1.1 With Security Fixes

Tuesday November 19, 2024 10:10 am PST by
Apple today released iOS 18.1.1 and iPadOS 18.1.1, minor updates to the iOS 18 and iPadOS 18 operating systems that debuted earlier in September. iOS 18.1.1 and iPadOS 18.1.1 come three weeks after the launch of iOS 18.1. The new software can be downloaded on eligible iPhones and iPads over-the-air by going to Settings > General > Software Update. Apple has also released iOS 17.7.2 for...
apple card feature2

Apple Card 3% Daily Cash Back Now Available From Two More Apple Partners

Tuesday November 19, 2024 10:36 am PST by
Apple has partnered with select merchants to offer Apple Card users three percent Daily Cash back on their purchases, and two new companies were added to the partner list today. When purchasing goods and services from Booking.com and ChargePoint, Apple Card users will now get more cash back. Booking.com is a site for reserving flights, cars, cruises, and hotels, while ChargePoint sells...
bug security vulnerability issue fix larry

Make Sure to Update: iOS 18.1.1 and macOS Sequoia 15.1.1 Fix Actively Exploited Vulnerabilities

Tuesday November 19, 2024 10:52 am PST by
The iOS 18.1.1, iPadOS 18.1.1, and macOS Sequoia 15.1.1 updates that Apple released today address JavaScriptCore and WebKit vulnerabilities that Apple says have been actively exploited on some devices. With the JavaScriptCore vulnerability, processing maliciously crafted web content could lead to arbitrary code execution. The WebKit vulnerability had the same issue with maliciously crafted...
airtag purple

AirTag 2 Rumored to Launch Next Year With These New Features

Sunday November 17, 2024 5:18 am PST by
Apple released the AirTag in April 2021, so it is now three over and a half years old. While the AirTag has not received any hardware updates since then, a new version of the item tracking accessory is rumored to be in development. Below, we recap rumors about a second-generation AirTag. Timing Apple is aiming to release a new AirTag in mid-2025, according to Bloomberg's Mark Gurman....
15 inch m3 macbook air

Amazon Takes Up to $300 Off M3 MacBook Air With New All-Time Low Prices

Wednesday November 20, 2024 7:05 am PST by
Amazon today has knocked the price off of multiple M3 MacBook Air models, with as much as $300 off select computers. Prices start at $849.00 for the 13-inch M3 MacBook Air (16GB RAM/256GB), and also include multiple 15-inch models as well. Note: MacRumors is an affiliate partner with Amazon. When you click a link and make a purchase, we may receive a small payment, which helps us keep the site ...
anker new xmas 1

Anker Kicks Off Massive Black Friday Sale With Up to 50% Off Sitewide, Free Gifts With Purchase, Mystery Boxes, and More

Thursday November 21, 2024 7:53 am PST by
Anker today kicked off its big Black Friday sale, which is set to run through December 9. This sale includes notable discounts on portable chargers, USB-C hubs, cables, and more. Note: MacRumors is an affiliate partner with Anker. When you click a link and make a purchase, we may receive a small payment, which helps us keep the site running. There are a few bonus offers during this event as ...

Top Rated Comments

SpotOnT Avatar
8 months ago

Am I glad I switched to the Samsung S24 and gave up using an iPhone.

My iPhone got badly hacked by that Israeli software 6 months ago. I real nightmare. Had to throw the phone out it was so badly hacked.

Seems nowadays iPhones get targeted with spyware even worse than Android.
Android just doesn’t bother notifying you when you are hacked?
Score: 52 Votes (Like | Disagree)
contacos Avatar
8 months ago
In case you are wondering what it actually looks like:




(from a reddit user last night)
Score: 35 Votes (Like | Disagree)
Ael_MR Avatar
8 months ago
I wasn't aware that people are safer on android or that hacks of this nature are common on iPhone. Thanks for this enlightening information. I will consider myself warned on the dangers of iPhone and it's lax security.

btw this is sarcasm in response to some of the replies for those who are already disliking my comment.
Score: 16 Votes (Like | Disagree)
Darren.h Avatar
8 months ago
Am I glad I switched to the Samsung S24 and gave up using an iPhone.

My iPhone got badly hacked by that Israeli software 6 months ago. I real nightmare. Had to throw the phone out it was so badly hacked.

Seems nowadays iPhones get targeted with spyware even worse than Android.
Score: 14 Votes (Like | Disagree)
contacos Avatar
8 months ago

Funny that Apple knows that the attackers are "state-sponsored" ?
Well the NSO group is from Israel and their biggest client was Mexico before others bought it as well. The UAE also received access to Pegasus as part of their befriending (3?) years ago.

An example: https://www.democracynow.org/2017/7/12/mexico_spied_on_human_rights_investigators
Score: 13 Votes (Like | Disagree)
SpotOnT Avatar
8 months ago

Funny that Apple knows that the attackers are "state-sponsored" ?
That is because that is the only people paying to use this stuff now.

It is state developed software, sold to other states.
Score: 13 Votes (Like | Disagree)