Apple Launches iPhone Security Tool To Block Targeted Attacks

Apple introduced a security tool for iPhone, iPad and Mac devices that is designed to prevent targeted cyberattacks on high-profile users such as activists, journalists and government officials. From a report: The optional feature, called Lockdown Mode, will offer "extreme" protection for a "very small number of users who face grave, targeted attacks," Apple said Wednesday in a statement. The tool vastly reduces the number of physical and digital ways for an attacker to hack a user's device. Apple said the feature is aimed primarily at trying to combat attacks from "spyware" sold by NSO Group and other companies, particularly to state-sponsored groups.

[...] Lockdown Mode will affect the Messages app, FaceTime, Apple online services, configuration profiles, the Safari web browser and wired connections. With the tool in place, the Messages app will block attachments other than images and disable link previews. Those are two common mechanisms that hackers use to infiltrate devices remotely. The web browser, another frequent conduit for hackers, will also be severely limited, with restrictions on certain fonts, web languages and features involving reading PDFs and previewing content. In FaceTime, users won't be able to receive calls from an individual that they haven't previously called within the preceding 30 days.

Re:

[Anonymous Coward]

Nope they're actually busy with security updates. In fact the iPhone 6S from 2015 still receives them.

Re:

[NoMoreACs]

It won't for long though. The current iOS 15 is the last version for anything less than iPhone 8. Which means currently infected people and future infected people won't get these security enhancements. Thanks Apple...

Apple has a longstanding policy of reaching pretty far back into old OSes to issue Critical Security Updates.

Re: wow, a useful feature

[saloomy]

If you are a political or journalistic person of high interest to someone actually capable of using NsO Groups software, you will have a relatively new iPhone. Not one from 2015 anyway.

Re:

[yuvcifjt]

This is the reason I only buy iPhones and will continue to advocate for it to those that need a smartphone.

Apple have proven time and again that they fight for the privacy of everyone, even going as far as the court and fighting against the FBI! And they've shown they have no need and especially no monetary reasons to harvest user data, unlike Google and Android, whom no one really knows what it does with the data or to whom it's sold. Insurance firms in particular would love to get hold over some of that d

Re: wow, a useful feature

[SleepingEye]

Despite the fact that many of these features are already in android? My S10 (hell, even my nexus 1) must be unlocked before it recognizes anything The question i have is: what kind of idiot orifices full api/ image access to just anyone immediately when plugged in to begin with? Enjoy

Re:

[registrations_suck]

iMessage lets you send/receive messages from Android users too.

Re:

[Rick Zeman]

iMessage lets you send/receive messages from Android users too.

Yeah, but they're dumb text messages, not the more powerful/flexible/integrated iMessages.

Re:

[tlhIngan]

Yeah, but they're dumb text messages, not the more powerful/flexible/integrated iMessages.

And also not the ad-laden RCS messages that seem to be replacing SMS...

I get why RCS is being heavily promoted as the next standard, except they haven't solved the spam over SMS problem yet, and now RCS spam is a big issue in various countries.

Not that iMessage is free from spam either, but still.

Re: Whatsapp?

[saloomy]

It would be great to turn off SMS. You can turn off iMessage. Who wants to talk to Android users anyway?

Re:

[NoMoreACs]

iMessage lets you send/receive messages from Android users too.

Yeah, but they're dumb text messages, not the more powerful/flexible/integrated iMessages.

"They" (probably) don't support some over-the-top Messages (hasn't been called iMessage for quite a bit now) features, like sending a heartbeat (FFS!), Animoji-stuff (I guess?), and maybe something or two else; but I can Send and Receive not only Text; but (of course) web links. Plus, I can also Send and Receive MMS Stuff like Embedded Images (including Animated GIFs), Videos (with no CODEC issues at either end), Audio (same thing), Multiple-Image "groups" (don't know what they are called), etc. Far beyond

Re:

[edwdig]

The only difference I've ever noticed is you only get the "Read" and "Typing" status updates if both users are on iOS.

Re:

[NoMoreACs]

The only difference I've ever noticed is you only get the "Read" and "Typing" status updates if both users are on iOS.

True. And, of course, the Blue Bubbles... 8-D

Re: Whatsapp?

[registrations_suck]

So what? You don't need complicated bullshit to just send a message.

Sounds useful to me, and I'm nobody

[Cyrano de Maniac]

I'm nobody, so certainly not the intended audience for this. However, reading the list of restrictions it appears to be a defeature set which I would be perfectly happy to engage. The only concern is the as-yet unlisted defeatures.

Re:

[93 Escort Wagon]

No kidding. Blocking link previews? Nice! Only allowing image attachments but nothing else? Sign me up!

Now if they'd just add a "send a strong electric jolt down the wire" button for whenever someone tries to post an animated gif, I'd pay extra!

Re:

[NoMoreACs]

No kidding. Blocking link previews? Nice! Only allowing image attachments but nothing else? Sign me up!

Now if they'd just add a "send a strong electric jolt down the wire" button for whenever someone tries to post an animated gif, I'd pay extra!

[Me] Searches for 93 Escort Wagon's Email Address. . . ;-)

Re:

[NoMoreACs]

I'm nobody, so certainly not the intended audience for this. However, reading the list of restrictions it appears to be a defeature set which I would be perfectly happy to engage. The only concern is the as-yet unlisted defeatures.

Well, this might be a more Fullsome explanation.

Plus, you can turn it on and off at will; which I think is essential for it to be practical, despite the potential Social Engineering hole that Opens.

Re:

[NoMoreACs]

Forgot the Article link:

https://www.macrumors.com/2022... [macrumors.com]

Re:

[AmiMoJo]

For most people something like Wasted on Android would probably be more useful. It's basically a panic button that can be programmed to do things like wipe your phone or send emergency text messages. It's open source too.

Re:

[Pascal Sartoretti]

I'm nobody, so certainly not the intended audience for this.

Remember the Olympic Games in Beijing, when athletes were told not to bring their "regular" smartphones but disposable ones ? The Lockdown Mode might have helped.

Except for some persons, I don't think it is a matter of who you are, but rather of where you are or what you are doing.

Elderly Mode

[SuperKendall]

Honestly all of these limitations are things I would really love to apply to the phone of elderly relatives, I don't think it would limit them in any way and it may protect them from soemthing that could fool them. I don't think any of it sounds that overly restrictive, I'd be half tempted to install it for myself...

Re:

[codeAlDente]

This all sounds good to me, I'm certainly going to try it out, but not sure I'll love getting a notification every time I'm targeted by some decidedly un-American state-sponsored entity

Re:

[SuperKendall]

not sure I'll love getting a notification every time I'm targeted by some decidedly un-American state-sponsored entity

Not sure I'd love it either but it could be really eye-opening!

What are we?

[backslashdot]

Chopped liver?

Re:

[WankerWeasel]

The feature will be available to all users.

How can I make myself a high-value target

[Ed Tice]

So that I can have basic security features that should have been in place for a decade? Maybe I can hack into apple's database of high-value targets and insert myself?!

Re:

[WankerWeasel]

Clearly you didn't bother to read more than just the basic headline. The feature can be activated by anyone but will be off by default.

Re: How can I make myself a high-value target

[gnasher719]

Snarky comment as expected. You realise that you get protection by removing features that are often used as attack vectors?

Definitely something worth checking out...

[ctilsie242]

I know that if it isn't too inconvenient, it will be something I'd be turning on. I don't need link previews, I don't use FaceTime, having a device not allow USB stuff locked isn't too bad, etc.

A few features lost for a lot of security gained. Sign me up.

Should have been the default all along

[khchung]

the Messages app will block attachments other than images and disable link previews.

The web browser .. with restrictions on certain fonts, web languages and features involving reading PDFs and previewing content.

In FaceTime, users won't be able to receive calls from an individual that they haven't previously called within the preceding 30 days.

The first two sounded great and should have been the default all along!

The last one may be a bit inconvenient, but great for preventing spam.

Re:

[hawk]

>The last one may be a bit inconvenient, but great for preventing spam.

sure, but you get a nice chicken & egg issue to go with your spam!