- By Prateek Levi
- Thu, 01 May 2025 07:09 PM (IST)
- Source:JND
Apple is back in the spotlight for alerting users about another wave of highly targeted spyware attacks — the kind it has previously linked to state-sponsored surveillance efforts. Similar to the Pegasus incident, these latest warnings are aimed at individuals believed to be under threat due to their profession or public profile, as first reported by TechCrunch.
Spyware strikes again — and Apple responds
In recent days, at least two people have publicly confirmed receiving Apple’s threat notifications: Italian journalist Ciro Pellegrino and Dutch right-wing activist Eva Vlaardingerbroek.
“Yesterday I got a verified threat notification from Apple stating they detected a mercenary spyware attack against my iPhone,” Vlaardingerbroek posted on X. “All I know for sure right now is that someone is trying to intimidate me.”
Pellegrino shared a screenshot of the email he received, which read: “Apple detected that you are being targeted by a mercenary spyware attack that is trying to remotely compromise the iPhone associated with your Apple Account.”
Apple explains how these warnings work
To shed light on its process, Apple published a support document on April 25 detailing how it detects and communicates these kinds of threats. The company emphasised that these attacks are rare but extremely sophisticated — far beyond the reach of ordinary cybercriminals. Apple says they typically target a narrow group of people, including journalists, activists, and politicians.
“These users are being targeted because of who they are or what they do,” Apple stated. While the company doesn’t reveal how it identifies these threats, it says it notifies users through both email and iMessage. These alerts come only from threat-notifications@email.apple.com or threat-notifications@apple.com, depending on the year.
A pattern going back years
Apple has been issuing these kinds of notifications since 2021 and says it has now alerted users in more than 150 countries. The company referenced past spyware incidents — including those involving Pegasus, developed by NSO Group — to underline the severity and purpose of the alerts.
Lockdown Mode and other advice
Those who receive a threat notification are urged to take immediate precautions, including enabling Lockdown Mode — a feature designed to reduce attack surfaces on the device. Apple also offered broader safety tips for all users:
-Keep your devices updated.
-Use strong, unique passwords.
-Set up two-factor authentication.
-Only download apps from the App Store.
-Don't click on links or files from unknown senders.
Although most people will never be targeted by this kind of spyware, Apple says it remains committed to notifying and protecting those who are.