Apple just fixed a big security flaw that let hackers install spyware on iPhones. This flaw, called a “zero-day” bug, was used to attack two European journalists.
The company that made the spyware is called Paragon. They’re a surveillance company from Israel.
Apple fixed the bug in February with an update to iOS 18.3.1. But they didn’t tell anyone about it until now.
The bug was in how iPhones handle photos and videos sent through iCloud Links. Apple says it was a “sophisticated attack” that could have been used against specific individuals.
One of the journalists who was attacked is Ciro Pellegrino from Italy. He had gotten a warning from Apple about spyware before, but it didn’t give him any details.
Paragon has been in the news before. In January, WhatsApp told about 90 users, including journalists and human rights activists, that they had been targeted by Paragon’s Graphite spyware.
Then in April, Apple warned some iPhone users in 100 countries that they might have been targeted by “mercenary spyware”. But they didn’t say who was behind it.
_now we know it was Paragon.
This is a big deal because it shows that companies like Paragon are using sophisticated spyware to target journalists and activists. And it’s hard to stop them.
Apple is trying to stay one step ahead of these hackers. But it’s a constant battle.
The company is warning users to be careful when they click on links or install apps. And they’re telling them to keep their iPhones and apps up to date.
It’s a reminder that our phones and computers are vulnerable to attack. And we need to be careful to protect ourselves.
What you can do to stay safe
- Keep your iPhone and apps up to date
- Be careful when you click on links or install apps
- Use strong passwords and two-factor authentication
- Back up your data regularly
What’s next
Apple will keep working to stay ahead of hackers like Paragon. And users need to stay vigilant to protect themselves.
This is an ongoing story. We’ll keep you updated as more information comes out.