Apple sues NSO Group over Pegasus |
Apple is suing Pegasus and NSO Group, the spyware maker, and is seeking a permanent injunction to prevent spyware makers from using its products or services.
The company hopes to introduce a ban to prevent further abuses and harm to its users.
Israel-based NSO Group is developing Pegasus, a spyware that gives government agents near-total access to targeted devices, including personal information, photos, messages and exact location.
Spyware works by exploiting previously unknown vulnerabilities in iPhone software. Malicious links in text messages were sent to many targeted individuals, including journalists, activists and human rights defenders. But Pegasus recently managed to hack iPhone without user intervention.
As we all know, Pegasus is used by many authoritarian governments, including Rwanda and Mexico. However, NSO Group has repeatedly refused to disclose or confirm the names of dozens of its clients due to confidentiality agreements.
The iPhone maker's lawsuit allegedly makes it difficult for the NSO group to find and exploit vulnerabilities in iPhone software to attack its targets.
Citizen Lab researchers discovered earlier this year that the NSO Group had developed a new vulnerability called BlastDoor that could bypass new protections built into the iPhone software. Apple aims to prevent NSO by filtering out potentially harmful data. broken device.
Citizen Lab invokes the ForcedEntry vulnerability because it can bypass Apple BlastDoor protection and the victim doesn't have to click a link to get infected.
After Apple determined that all devices were affected by the vulnerability, Apple fixed the vulnerability in September, not just the iPhone.
Apple announces $10 million in support for network monitoring researchers
According to Apple, NSO Group uses Apple's own services to deliver spyware. By applying for an injunction.
The iPhone manufacturer wants to prevent the NSO group from using its services to launch attacks on targeted groups.
“We always strive to protect our users from the most sophisticated cyber attacks,” said Evan Krestek, Apple's chief security officer. The actions we are taking send a clear message that spyware is not acceptable in a free society as a weapon against those who want to make the world a better place.
Our threat intelligence and engineering teams work around the clock to analyze new threats. And fix vulnerabilities quickly. and the development of revolutionary new methods of protection. We operate one of the most complex security technology companies in the world. We will continue to work tirelessly to protect our users from government sponsored entities (such as the NSO Group).
Apple notifies targeted victims through ForcedEntry. He also said he would inform victims who he said were the target of government-sponsored spyware.