Al Mayadeen English

  • Ar
  • Es
  • x
Al Mayadeen English

Slogan

  • News
    • Politics
    • Economy
    • Sports
    • Arts&Culture
    • Health
    • Miscellaneous
    • Technology
    • Environment
  • Articles
    • Opinion
    • Analysis
    • Blog
    • Features
  • Videos
    • NewsFeed
    • Video Features
    • Explainers
    • TV
    • Digital Series
  • Infographs
  • In Pictures
  • • LIVE
News
  • Politics
  • Economy
  • Sports
  • Arts&Culture
  • Health
  • Miscellaneous
  • Technology
  • Environment
Articles
  • Opinion
  • Analysis
  • Blog
  • Features
Videos
  • NewsFeed
  • Video Features
  • Explainers
  • TV
  • Digital Series
Infographs
In Pictures
  • Africa
  • Asia
  • Asia-Pacific
  • Europe
  • Latin America
  • MENA
  • Palestine
  • US & Canada
BREAKING
Sources to Al Mayadeen: Extending the snapback mechanism deadline will test how independent Europeans truly are from the US.
Sources to Al Mayadeen: Activating the snapback mechanism will nullify the Cairo Agreement, shut the door on cooperation between the IAEA and Tehran, and bar inspections.
Sources to Al Mayadeen: The diplomatic window remains open, but signs of activating the snapback sanctions mechanism on Iran are increasing.
Sources to Al Mayadeen: Although the Cairo Agreement meets an important part of European demands, they have begun speaking of new conditions in recent communications.
Sources to Al Mayadeen: European countries show no independence in their stance toward Iran during the talks.
Israeli occupation forces issued bombing threats to bomb civilian buildings in Southern Lebanon.
Israeli media: Person behind shooting operation at Allenby Crossing is a Jordanian Army soldier.
Israeli media citing Emergency Services: Both wounded in Allenby shooting operation now dead.
Israeli media: One soldier wounded at Allenby crossing now confirmed killed.
Israeli media: Preliminary reports of shooting operation at Allenby crossing with Jordan.

Apple issues critical security update after NSO Pegasus spyware breach

  • By Al Mayadeen English
  • Source: The Verge + news websites
  • 8 Sep 2023 16:04
  • 2 Shares
4 Min Read

Apple cautions that iPhones and iPads could be vulnerable to actors associated with the Israeli firm NSO.

  • x
  • Israeli NSO group logo (AFP via Getty Images)
    Israeli NSO group logo (AFP via Getty Images)

Apple has released a crucial security update for iPhones, addressing a zero-day vulnerability uncovered in iOS 16. This security flaw was initially detected by Citizen Lab, a research group specializing in spyware. The vulnerability has the potential to allow malicious actors to remotely install spyware on an iPhone without requiring any interaction from the device's owner. Citizen Lab identified and promptly reported this zero-click zero-day exploit to Apple.

The exploit had previously been utilized to deploy Pegasus spyware, developed by the Israeli NSO Group. This spyware was installed on an iPhone belonging to an employee of a civil society organization based in Washington, D.C. Pegasus is engineered to infiltrate a phone and gather various forms of data, including photos, messages, audio recordings, and videos.

Simultaneously, Apple has swiftly launched iOS 16.6.1 in response to the discovery of this breach. It is imperative for iPhone users to install this update promptly, regardless of whether they are considered high-risk targets for the Israeli spyware.

The concern arises from the fact that numerous groups are willing to analyze iOS security updates meticulously in an attempt to uncover how to exploit this newfound vulnerability, thereby increasing the potential for more widespread attacks.

Citizen Lab has refrained from providing an in-depth breakdown of the vulnerability, primarily for security reasons. Nevertheless, the exploit revolves around PassKit, the framework underpinning Apple Pay and Wallet, and involves attachments containing malicious images that are delivered via iMessage.

“We expect to publish a more detailed discussion of the exploit chain in the future,” said Citizen Lab.

Over the past few years, iOS vulnerabilities have frequently garnered attention, particularly those that have been exploited by malicious actors before Apple became aware of the security flaw. To address such issues promptly, Apple has devised a Rapid Security Response system, which can apply security fixes to an iPhone without necessitating a device reboot.

Importantly, Citizen Lab points out that Apple's Lockdown Mode can serve as a protective measure against this recent exploit. Therefore, individuals who could be potential targets for the Israeli spyware are strongly advised to activate this mode as a precaution.

Read next: Apple warns of flaw that invites hackers into iPhones, iPads, Macs

Related News

Ultra-Orthodox Jews clash with Israeli military over military draft

Death chases Israeli troops to Jordan; 2 killed in border shooting

A flashback 

In April, a report published by the Citizen Lab at the University of Toronto revealed several advanced and complicated hacking techniques used by Pegasus spyware.

The Citizen Lab found that a month after iPhone's iOS 16 operating system was officially released, the Israeli firm carried out attacks against phones with the updated version.

According to the report, these are Zero-Click exploit chains, where hackers may break into the phones without the user clicking on a link or downloading any malware. which enables a covert, quiet infection that is undetectable.

At the time, the Citizen Lab report delved further into the techniques employed by NSO to circumvent iPhone protections.

The researchers found that PWNYOURHOME and FINDMYPWN are the first Zero-Click exploits that capitalize on various points in the software environment where an iPhone device may be prone to cyberattacks, including physical connections such as USB ports, internet connections, and other routes hackers can use to try to breach the device.

These techniques allowed the Israeli spyware to infect even the most up-to-date iPhones with the most recent versions of Apple's operating system.

The Citizen Lab researchers also pointed out that for a brief period of time, users who activated iOS 16's Lockdown Mode - an increased level of protection - encountered real-time notifications of attempted device infection.

In mid-July 2022, Apple unveiled the Lockdown Mode to block or disable some features and capabilities to prevent them from being taken advantage of by spyware.

The extreme, optional mode "hardens device defenses and strictly limits certain functionalities, sharply reducing the attack surface that potentially could be exploited by highly targeted mercenary spyware," Apple explained.   

Read next: Israeli cyberespionage firm meddled in 33 elections worldwide: Reports

  • Israel
  • Pegasus project
  • NSO Group
  • Pegasus Spyware
  • Pegasus

Most Read

Why is Choose Love using a firm with British and US intelligence connections to run a pro-Palestine musical event? (Al Mayadeen English; Illustrated by Batoul Chamas)

Together for Palestine: Troubling questions about the organisers of this huge event

  • Opinion
  • 17 Sep 2025
Uprising against Volker Turk at the Human Rights Council over Gaza.

Uprising against Volker Turk at the Human Rights Council over Gaza

  • Politics
  • 12 Sep 2025
A screengrab from the ad played on Fox News. (X Screengrab)

Fox airs ad warning Trump not to let Netanyahu 'play' him on Gaza

  • US & Canada
  • 11 Sep 2025
Lapid: Egypt’s Arab Force plan a 'severe blow' to normalization

Lapid: Egypt’s Arab Force plan a 'severe blow' to normalization

  • Palestine
  • 14 Sep 2025

Coverage

All
The Ummah's Martyrs

Read Next

All
A Hezbollah supporter who lost his sight in a pager attack carried out by "Israel" on Sept. 17, 2024, covers his eyes with a red headband inscribed with the name "Hussein" during Ashoura, July 6, 2025 (AP)
Politics

'We Have Recovered': Lebanon marks 1st anniversary of Pager Attack

The Arab neighborhood of El Za'im, on the outskirts of east Occupied Al-Quds in the West Bank, near where Israeli government says housing units will be built as part of the E1 settlement project, Thursday, August 21, 2025. (AP Photo/Ohad Zwigenberg)
Palestine

'Israel’s' deliberate policies drive West Bank economy toward collapse

Ben & Jerry's ice cream shop, Wednesday, Feb. 26, 2025, in Cambridge, Mass. (AP Photo/Charles Krupa)
Politics

Ben & Jerry’s co-founder resigns over parent company curbing activism

Trump’s approval rating falls to new low in second term: Poll
US & Canada

Trump’s approval rating falls to new low in second term: Poll

Al Mayadeen English

Al Mayadeen is an Arab Independent Media Satellite Channel.

All Rights Reserved

  • x
  • Privacy Policy
  • About Us
  • Contact Us
  • Authors
Android
iOS