Discover and read the best of Twitter Threads about #ZeroClick

Most recents (2)

NEW INVESTIGATION: recent Mexican #Pegasus spyware abuses led us to evidence of a trio of zero-click exploits used by #NSO.

Targets? HomeKit & FindMy.

Remarkably, #Apple's #iOS #LockdownMode blocked one of them.

Quick THREAD 1/
citizenlab.ca/2023/04/nso-gr… Image
2/ First, the new victims: Mexican lawyers representing families of victims of Military abuses

The timing of the targeting matches key developments in efforts to hold #Mexico's army responsible.

It's really bad.

We @citizenlab forensically confirmed the spyware infections. One infected device belongs...ImageImage
3/ We found evidence of 3 #zeroclick #0day chains used by NSO's #Pegasus #spyware in 2022.

First: #PWNYOURHOME: worked against #homekit even if you didn't set up a home.

Apple's changes in iOS 16.3.1 that address.

#LockdownMode also kneecaps it. ImageImageImageImage
Read 6 tweets
In late November, after receiving an iMessage alert from Apple, I learned that #NSO’s #Pegasus spyware was used to infect my phone 5 times between April and August 2021.
#NSO says it only sells #Pegasus to governments to stop criminals and terrorists, but the attacks against me and countless other activists and journalists are proof that that isn’t true. hrw.org/news/2022/01/2…
The attacks were so-called #ZeroClick attacks, which meant I didn’t do anything—like click on a link—for the attack to start. There is no way to prevent this type of attack.
Read 9 tweets

Related hashtags

Did Thread Reader help you today?

Support us! We are indie developers!


This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!