Apple sued NSO Group, an Israeli company that provided software to government agencies and law enforcement agencies that allowed them to hack iPhones and access their content, including text and other communications, on the day. Tuesday. Amnesty International reported earlier this year that it had discovered a recent model iPhones infected with the NSO Group spyware called Pegasus owned by journalists and human rights lawyers. Apple is trying to obtain a permanent license that prohibits the NSO Group from using Apple software, services, or devices. He is also claiming more than $ 75,000 in damages.
Apple considers the lawsuit to be a warning to other spyware vendors. “The steps Apple is taking today will send a clear message: in a free society, it is unacceptable to make a state-sponsored weapon capable of against innocent users and those who seek to make a living in the field the best, ”said Ivan Krstic, head of Apple. fire safety- and architecture, said in a tweet.
NSO Group software allows “attacks, including from governments that pay hundreds of millions of dollars to target and attack a fraction of users with information of particular interest to NSO customers,” Apple said in a statement. filed a lawsuit in federal court in Northern California, alleging it was not a “consumer malware.”
Apple also said on Tuesday it had cleared up defects that allowed NSO Group software to access private data on iPhones using “zero-click” attacks where malware was transmitted via text message and left little notice of infection.
Pegasus users can remotely monitor iPhone-owned services, receive emails, text messages and browsing history, and access the microphone and camera, Apple has filed a lawsuit. Apple said the attacks targeted only a small number of customers, and said on Tuesday it would inform iPhone users who may be targeted by Pegasus malware.
“To send power to Apple devices, attacks create Apple IDs to send malicious data to the victim’s device – allowing NSO Team or its customers to send and install Pegasus spyware without the victim’s knowledge,” Apple said in a statement. your announcement. “Although the misuse to deliver AGBON, Apple servers have not been hacked or compromised in attacks.”
The NSO team created Apple ID accounts and violated iCloud service rules to operate its spyware, Apple said.
The NSO team is accused of using “0day” bugs to create its spyware, or flaws that Apple has not fixed. Once Apple fixes the abuse, it is no longer 0day and users can protect themselves by updating their iPhone software.
Earlier this year, Amnesty International said it had found evidence of an iPhone 12 hack and had received a leaked list of 50,000 phone numbers targeted by NSO Group software. The NSO Group alleges that it was used to track down relatives and people close to Jamal Khashoggi, a Washington Post author who was killed in Turkey by assassins working on behalf of Saudi Arabia.
Amnesty International also said it had uncovered NSO Group malware on the iPhones of a French human rights lawyer, a French activist, an Indian journalist and a Rwandan activist.