Discover and read the best of Twitter Threads about #zeroclick
Most recents (2)
NEW INVESTIGATION: recent Mexican #Pegasus spyware abuses led us to evidence of a trio of zero-click exploits used by #NSO.
Targets? HomeKit & FindMy.
Remarkably, #Apple's #iOS #LockdownMode blocked one of them.
Quick THREAD 1/
citizenlab.ca/2023/04/nso-gr…
Targets? HomeKit & FindMy.
Remarkably, #Apple's #iOS #LockdownMode blocked one of them.
Quick THREAD 1/
citizenlab.ca/2023/04/nso-gr…
2/ First, the new victims: Mexican lawyers representing families of victims of Military abuses
The timing of the targeting matches key developments in efforts to hold #Mexico's army responsible.
It's really bad.
We @citizenlab forensically confirmed the spyware infections.
The timing of the targeting matches key developments in efforts to hold #Mexico's army responsible.
It's really bad.
We @citizenlab forensically confirmed the spyware infections.
3/ We found evidence of 3 #zeroclick #0day chains used by NSO's #Pegasus #spyware in 2022.
First: #PWNYOURHOME: worked against #homekit even if you didn't set up a home.
Apple's changes in iOS 16.3.1 that address.
#LockdownMode also kneecaps it.
First: #PWNYOURHOME: worked against #homekit even if you didn't set up a home.
Apple's changes in iOS 16.3.1 that address.
#LockdownMode also kneecaps it.
In late November, after receiving an iMessage alert from Apple, I learned that #NSO’s #Pegasus spyware was used to infect my phone 5 times between April and August 2021.
#NSO says it only sells #Pegasus to governments to stop criminals and terrorists, but the attacks against me and countless other activists and journalists are proof that that isn’t true. hrw.org/news/2022/01/2…
The attacks were so-called #ZeroClick attacks, which meant I didn’t do anything—like click on a link—for the attack to start. There is no way to prevent this type of attack.
