HomeinetApple is suing the NSO Group for attacking an iPhone with a Pegasus

Apple is suing the NSO Group for attacking an iPhone with a Pegasus

Following the example of WhatsApp, Apple has filed complaint against the company behind Pegasus spyware, the NSO Group. Along with new information on how the NSO Group was targeted iPhone through a zero-click exploit that the researchers later named ForcedEntry, Apple says that "seeks a permanent injunction to ban NSO Group from using any Apple software, services or devices».


See also: Dubai Sheikh uses NSO Group Pegasus spyware to hack his ex-wife

Senior Vice President of Software Engineering, Craig Federighi stated: "Government agencies such as the NSO Group spend millions of dollars on sophisticated surveillance technologies without effective accountability. That's to change Apple Apple devices are the safest consumer market - but private companies developing state-spyware have become even more dangerous». Apple and WhatsApp are not the only ones to take the NSO Group to court, as tech companies such as Microsoft and Google filed a brief statement last year in support of the lawsuit filed against it. Facebook.

Pegasus spyware is designed to allow governments to remotely access microphones, cameras and other data on a phone, whether iPhone or Android, according to Apple's press release. It is also designed to be able to infect phones without requiring any action from the user and leaving no trace, according to reports released earlier this year by a news coalition called the Pegasus Project and Apple's complaint.

See also: Amnesty International's fake Pegasus scanner infects Windows devices

Apple also says spyware has been used against journalists, activists and politicians, despite NSO claims that its government customers are prohibited from using spyware against these types of targets. It is understandable that Apple, which advocates so much privacy, has been upset about its devices and services being used to carry out what it calls "human rights abuses."


Part of Apple's argument in the complaint is that NSO violated Apple's terms of service because the team created "more than a hundred" Apple IDs to help it send data to targets.

Apple's complaint details how the attack works, using the Apple IDs it created, NSO sending data to a target via iMessage (after finding that it was using an iPhone), which was maliciously constructed to disable logging iPhone. This would allow NSO to secretly install Pegasus spyware and monitor what is being collected on the phone. Apple says the specific vulnerability used by NSO was fixed in iOS 14.8.

See also: Pegasus spyware strikes again: Update iPhone, Mac, Apple Watch!

In essence, NSO was sending files that exploited an error in the way iMessage rendered GIFs and PDFs.

Apple states in its press release that, thanks to improvements to iOS 15 security, "has not noticed any evidence of successful remote attacks against devices running iOS 15 and later». When the Pegasus Project released its reports in July, Amnesty International said the latest versions of iOS (then iOS 14.6) were vulnerable to attack.

Absent Miahttps://www.secnews.gr
Being your self, in a world that constantly tries to change you, is your greatest achievement