Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror
×
Security Apple

New Flaw in Apple Devices Led To Spyware Infection, Researchers Say (reuters.com) 35

Researchers at digital watchdog group Citizen Lab say they found spyware they linked to Israeli firm NSO that exploited a newly discovered flaw in Apple devices. From a report: While inspecting the Apple device of an employee of a Washington-based civil society group last week, Citizen Lab said it found the flaw had been used to infect the device with NSO's Pegasus spyware, it said in a statement.

Bill Marczak, senior researcher at Citizen Lab, said the attacker likely made a mistake during the installation which is how Citizen Lab found the spyware. Citizen Lab said Apple confirmed to them that using the high security feature "Lockdown Mode" available on Apple devices blocks this particular attack. The flaw allowed compromise of iPhones running the latest version of iOS (16.6) without any interaction from the victim, the digital watchdog said. The new update fixes this vulnerability.

This discussion has been archived. No new comments can be posted.

New Flaw in Apple Devices Led To Spyware Infection, Researchers Say

Comments Filter:
  • Apple should be buying or at least hiring the NSO group to prevent these flaws from the start. Apple has enough money, its about economics at the end of the day.

    • by Merk42 ( 1906718 )
      Why don't companies simply release flawless software that has 0 vulnerabilities! bing bong so simple!
      • Clearly, Apple is not finding the flaws themselves and NSO is finding the flaws. This is a path to software improvement.

    • NSO probably figures they make more money as an independent company, since they can charge top dollar to governments, criminal organizations, etc.

    • Apple should be buying or at least hiring the NSO group to prevent these flaws from the start. Apple has enough money, its about economics at the end of the day.

      Logic Fail.

      The NSO Group did not create the flaws. They exploit the flaws. Apple created the flaws when they created the hardware/software. If NSO shut down the flaws would still exist, still be discovered by hackers, and still be sold on the black market for exploitation -just not to NSO.

      The headline and summary above bill this as a new flaw. It is not new. It has existed and been exploited by spyware makers (such as the NSO group) for an unspecified time. Apple has just newly discovered and patched

      • Hey ID10T, you missed my point. I didn't say put NSO out of work, I said put them to work for Apple. I'm saying that Apple needs to hire better code breakers and NSO has them, and Apple has the cash to make it work. If Apple, internally, can find an fix more flaws before release then we are all better off. I never said this path solves all problems, it could be an improvement though.

        • NSO buys exploits ..

        • Why would they waste money buying nso? Their users believe their idevices are impenetrable despite being proven time and again their software and app stores are leaky. Look how many people defend them in batterygate, completely missing the point of "Hey, your battery seems to be dying, you should replace it", instead focusing on "oh, they did it so it doesn't turn off on high loads"
  • iOS 16.6.1 has been released [apple.com], specifically to fix this.

Think of it! With VLSI we can pack 100 ENIACs in 1 sq. cm.!

Working...