Despite the Hype, iPhone Security No Match For NSO Spyware

The text delivered last month to the iPhone 11 of Claude Mangin, the French wife of a political activist jailed in Morocco, made no sound. It produced no image. It offered no warning of any kind as an iMessage from somebody she didn’t know delivered malware directly onto her phone — and past Apple’s security systems. Once inside, the spyware, produced by Israel’s NSO Group and licensed to one of its government clients, went to work, according to a forensic examination of her device by Amnesty International’s Security Lab. It found that between October and June, her phone was hacked multiple times with Pegasus, NSO’s signature surveillance tool, during a time when she was in France. The examination was unable to reveal what was collected. But the potential was vast: Pegasus can collect emails, call records, social media posts, user passwords, contact lists, pictures, videos, sound recordings and browsing histories, according to security researchers and NSO marketing materials.

The spyware can activate cameras or microphones to capture fresh images and recordings. It can listen to calls and voice mails. It can collect location logs of where a user has been and also determine where that user is now, along with data indicating whether the person is stationary or, if moving, in which direction. And all of this can happen without a user even touching her phone or knowing she has received a mysterious message from an unfamiliar person — in Mangin’s case, a Gmail user going by the name “linakeller2203.” These kinds of “zero-click” attacks, as they are called within the surveillance industry, can work on even the newest generations of iPhones, after years of effort in which Apple attempted to close the door against unauthorized surveillance — and built marketing campaigns on assertions that it offers better privacy and security than rivals.

[…] Researchers have documented iPhone infections with Pegasus dozens of times in recent years, challenging Apple’s reputation for superior security when compared with its leading rivals, which run Android operating systems by Google. The months-long investigation by The Post and its partners found more evidence to fuel that debate. Amnesty’s Security Lab examined 67 smartphones whose numbers were on the Forbidden Stories list and found forensic evidence of Pegasus infections or attempts at infections in 37. Of those, 34 were iPhones — 23 that showed signs of a successful Pegasus infection and 11 that showed signs of attempted infection.

Hundreds Riot, Thousands Protest at iPhone Factory in India

The international news agency AFP reports on “a violent rampage at a Taiwanese-run iPhone factory in southern India” leading to over 100 arrests. About 2,000 workers were involved in the protest, reports the Verge, citing the Indian Express newspaper.

The workers are protesting over allegations of unpaid wages and exploitation, according to AFP. “Local media reported workers saying they had not been paid for up to four months and were being forced to do extra shifts…”
Workers at the Taiwanese-run Wistron Infocomm Manufacturing near Bangalore smashed glass panels with rods and flipped cars on their side… CCTV cameras, fans and lights were torn down, while a car was set on fire, footage shared on social media showed…

A local trade union leader alleged that there was “brutal exploitation” of factory workers in sweatshop conditions at the iPhone manufacturing plant. “The state government has allowed the company to flout the basic rights,” Satyanand, who uses one name, told The Hindu newspaper… Labour unrest is not uncommon in India, with workers paid poorly and given few or no social security benefits.

Can An Individual Still Resist The Spread of Technology?

When cellphones first appeared, they gave people one more means of communication, which they could accept or reject. But before long, most of us began to feel naked and panicky anytime we left home without one. To do without a cellphone — and soon, if not already, a smartphone — means estranging oneself from normal society. We went from “you can have a portable communication device” to “you must have a portable communication device” practically overnight… Today most people are expected to be instantly reachable at all times. These devices have gone from servants to masters…

Few of us would be willing to give up modern shelter, food, clothing, medicine, entertainment or transportation. Most of us would say the trade-offs are more than worth it. But they happen whether they are worth it or not, and the individual has little power to resist. Technological innovation is a one-way street. Once you enter it, you are obligated to proceed, even if it leads someplace you would not have chosen to go.

The column argues “the iPhone X proves the Unabomber was right,” citing this passage from the 1996 manifesto of the anti-technology terrorist. “Once a technical innovation has been introduced, people usually become dependent on it, so that they can never again do without it, unless it is replaced by some still more advanced innovation. Not only do people become dependent as individuals on a new item of technology, but, even more, the system as a whole becomes dependent on it.”