IVerify Reports Targeted iPhone Spyware Attacks on US, EU Political Figures

Cybersecurity firm iVerify has reported a previously unknown iOS vulnerability in the nickname feature of iMessage that may have been exploited to target iPhones of high-profile individuals, including political campaign members, media figures, AI company personnel, and a European government official. The exploit, which allowed attackers to bypass Apple’s security architecture through a sandbox escape, potentially enabled spyware installation and remote tampering starting in late 2024, though Apple disputes these claims. iVerify's analysis of nearly 50,000 devices found only six affected phones, all linked to individuals likely targeted by sophisticated threat actors with connections to activism against the Chinese Communist Party. The flaw was patched in iOS 18.3.1, and while there is no concrete proof of widespread exploitation, the incidents align with targeted espionage efforts. Apple maintains iOS remains robust and rejects the notion of a targeted attack, emphasizing the rarity of such crashes and the overall security of its systems. The findings highlight ongoing risks of mobile exploitation amid geopolitical tensions and underscore the importance of security measures like Lockdown Mode for vulnerable users.