Apple has issued a new wave of security notifications to individuals across 100 countries, warning them that they have been targeted by sophisticated government-backed “mercenary” spyware. The alerts, sent out this week, mark a significant escalation in the ongoing battle between tech giants and private firms that develop surveillance tools for state actors.
High-Confidence Warnings of Mercenary Attacks
The notifications explicitly state that Apple has “high confidence” that the recipients were specifically targeted due to their personal identity or professional activities. The alert warns users: “Apple detected a targeted mercenary spyware attack against your iPhone. This attack is likely targeting you specifically because of who you are or what you do.”
While Apple has not disclosed the specific nature of the current campaign, these notifications follow a pattern of similar warnings issued by the company throughout the previous year. Tech entities such as Google and WhatsApp have also ramped up efforts to inform users when they detect state-sponsored digital espionage.
Public Accounts of Targeted Individuals
As of Wednesday, two prominent figures have publicly confirmed receiving these alerts. Ciro Pellegrino, a journalist for the Italian news outlet Fanpage, reported receiving both an email and a text message from Apple. Pellegrino noted that the communication indicated a widespread campaign affecting users across 100 countries.
Joining him is Eva Vlaardingerbroek, a Dutch political activist, who shared details of the warning on social media. Vlaardingerbroek characterized the incident as a clear attempt to intimidate and silence her work. Neither individual has provided further details on their potential exposure, and Apple has yet to issue an official comment regarding the scope of the attacks.
A Recurring Pattern of Digital Surveillance
This incident is part of a broader trend of targeted surveillance against journalists and activists. Pellegrino’s experience follows a similar incident earlier this year involving his colleague at Fanpage, Francesco Cancellato. In that case, WhatsApp notified Cancellato that his device had been compromised by spyware developed by the Israeli firm Paragon Solutions.
The investigation into the Paragon-linked attacks, which also involved members of the NGO Mediterranea Saving Humans, eventually led to reports that Paragon had severed ties with its Italian government client. Digital rights organizations, including Citizen Lab, continue to monitor these developments as spyware manufacturers face increasing scrutiny for selling invasive technology to government entities worldwide.