Faced with a surge in state-sponsored mercenary spyware attacks targeting its flagship iOS platform, Apple plans to add a new “lockdown mode” that drastically reduces the attack surface and adds technical barriers to limit sophisticated software exploits.
The Cupertino, Calif.-based tech giant said lockdown mode capability will be available on iOS 16, iPadOS 16, and macOS Ventura as “extreme, optional protection for the very small number of users” who are targeted by governments for oversight.
“Enabling Lockdown Mode in iOS 16, iPadOS 16, and macOS Ventura further strengthens device defenses and severely limits certain features, dramatically reducing the attack surface that could potentially be exploited by highly targeted mercenary spyware” , Apple said in a statement. Remark published on Wednesday.
LILY: Google: NSO Zero-Click “the most technically sophisticated exploit ever seen”
At launch, Apple said the new Lock Mode will include the following protections:
• posts: Most types of message attachments other than images are blocked. Some features, such as link previews, are disabled.
• Apple Services: Incoming invitations and service requests, including FaceTime calls, are blocked if the user has not already sent a call or request to the initiator.
• Wired connections to a computer or accessory are blocked when iPhone is locked.
• Configuration profiles cannot be installed and the device cannot enroll in mobile device management (MDM) when lockdown mode is enabled.
“Lockdown Mode is a groundbreaking capability that reflects our unwavering commitment to protecting users against the rarest and most sophisticated attacks,” said Ivan Krstić, head of engineering and security architecture at Apple. “While the vast majority of users will never fall victim to highly targeted cyberattacks, we will work tirelessly to protect the small number of users who are,” Krstić added.
[ READ: Apple Slaps Lawsuit on NSO Group Over Pegasus iOS Exploitation ]
Apple also announced a new category within its bug bounty program to reward researchers who find workarounds to Lockdown Mode and help improve its protections. Bonuses are doubled for qualifying results in lockdown mode, up to a maximum of $2,000,000, the highest maximum bonus payout in the industry, the company said.
The device maker also plans to offer a $10 million grant to support organizations that investigate, expose and prevent highly targeted cyberattacks, including those created by private companies developing state-sponsored mercenary spyware. .
Apple’s latest announcements are in response to a wave of zero-day attacks hitting iOS and macOS users with sophisticated exploits that install high-end monitoring tools. The company has taken legal action against notorious Israeli spyware maker NSO Group and added a new BlastDoor sandbox to protect its platform from no-click exploits.
Related: Google: NSO Zero-Click “the most technically sophisticated exploit ever seen”
Related: Secret Israeli Exploitation Company Behind Wave of Zero-Day Exploits
Related: Apple Files Lawsuit Against NSO Group Over Exploiting Pegasus iOS
Related: Citizen Lab Exposes Cytrox as Vendor Behind “Predator” iPhone Spyware
Related: New iOS Zero-Click Exploit Beats Apple’s “BlastDoor” Sandbox