After the Pegasus fallout, Apple announced that it will introduce a lockdown feature that will prevent spyware from accessing Apple devices. What did the Pegasus spyware do, how will the new blocking feature work, and what are the challenges posed by spyware?
What does the Pegasus spyware do?
A few years ago, Pegasus spyware made headlines after it was leaked that the software was being used to target all manner of political dissidents, journalists, and key figures of state. Pegasus spyware is particularly scary because it can be remotely installed on a device without showing it. Once the victim clicks on a suspicious link, it jailbreaks the device and starts an installation. Once installed, it has full access to messaging, calling, password collection, location tracking, microphone access, camera access, and gathering information from other apps. Some versions of Pegasus spyware can even be installed on devices without user interaction (so-called zero-click vulnerability).
Israel-based spyware developer NSO Group originally developed the tool as a way for "authorized governments" to prevent acts of terrorism by gaining access to suspects' data. However, authoritarian governments were quick to use the tool to track down those who posed a threat to their government and other world leaders. For example, key members of the state were found to be infected with Pegasus in both the United States and the United Kingdom, believing that the source of the attack was the United Arab Emirates. Following the spyware revelations, NSO Group has now been placed on a US trade list and is facing multiple lawsuits from Apple and WhatsApp.
How does Apple's lockdown feature work? Recognizing the challenges posed by spyware, Apple recently announced the development of a new Lockdown Mode feature. When a device is in this mode, iPhone restricts access to critical system resources, blocks unknown callers from making calls on the device, and blocks multiple forms of media, including links and images. The ability to block unknown callers from establishing a call is an important feature, as the Pegasus spyware can be installed via WhatsApp calls even if the other end does not answer.
In addition, the new feature also blocks functions within apps, such as e.g. B. Just-In Time JavaScript compilation in Safari, prevents wired access via USB so that unsuspecting users cannot load firmware, and also prevents the installation of configuration profiles. Additionally, Apple has also acknowledged that its cybersecurity bounty program does not provide high enough rewards for reported vulnerabilities and as such will double the bounty to $2 million for anyone who finds lock mode bugs. On top of that, Apple will also get $10 million Offer US dollars to organizations that want to expose the illegal use of spyware. What challenges does spyware pose? In an age where digital technology dominates, accessing a person's device (and therefore their messages, pictures, and browsing history) is a daunting concept. Sure, there are those who believe their lives are so boring that government agencies wouldn't take an interest in them. However, the ability to break into a phone and gain remote access not only opens the device up to date theft but also allows a third party to place evidence on the phone.
For example, imagine a government activist denouncing human rights violations by an authoritarian government. Pegasus spyware allows the government to monitor your communications, identify other people of interest, and track your location, but it could also be used to place illegal content on devices (such as child pornography). If the evidence is available, local authorities would be ordered to arrest the individual, find the evidence, and report it to state media in order to discredit his anti-government work.
The more complex electronic devices become, the more difficult it becomes to find all faults and vulnerabilities. In addition, the increasing reliance on digital technologies also provides hackers with new attack vectors, and the increasing use of internet-connected devices allows hackers to reach victims anywhere in the world. If spyware like Pegasus is to be stopped, new devices may need to incorporate physical switches that completely disable cameras, microphones, and memory modules to prevent access altogether. Otherwise, it may require people to withdraw from their heavily digitized lives and start relying on older technologies; A message in a briefcase is harder to hack than a phone!