In recent years, a number of individuals—especially journalists, activists, and political figures—have become targets of mercenary spyware attacks. For those unfamiliar, these attacks involve powerful surveillance tools developed by private companies and sold to governments or other entities to infiltrate personal devices. Apple’s recent warnings to users in over 100 countries signal the rising severity of this threat. In this guide, I’m going to share the 6 reliable ways to safeguard your iPhone and iPad from the dreaded mercenary spyware attacks.
What Is Mercenary Spyware?
Before going any further, it would be apt to shed some more light on the “Mercenary Spyware” to find out its modus operandi.
Mercenary spyware refers to advanced surveillance software created by private firms for profit. These tools are sold to state actors and other clients under the guise of national security or criminal investigations. The most infamous example is Pegasus, a spyware developed by the Israeli NSO Group. Pegasus can secretly infiltrate a smartphone, extract personal data, access the microphone and camera, track location, and more—all without the user’s knowledge.
These attacks are often zero-click—meaning the user doesn’t need to open a link or file. Once infected, the spyware operates silently, making detection extremely difficult without specialized tools.
Why Apple Is Warning Users
Apple has been issuing Threat Notifications since 2021 to individuals it believes have been targeted by state-sponsored spyware. The latest wave of alerts, sent to users in 100 countries, includes warnings like:
“Apple detected that you are being targeted by a mercenary spyware attack that is trying to remotely compromise the iPhone associated with your Apple Account…”
This suggests that the attackers are focusing on specific individuals based on “who they are or what they do.” Apple says it has “high confidence” in the threat detection, even if absolute certainty is not always possible.
While no system is completely immune, there are several ways to significantly reduce your risk:
1. Enable Lockdown Mode (iPhone & iPad)
Lockdown Mode is an extreme protection feature in iOS 16 and later (including iOS 18.4.1) designed for those who may be targeted by sophisticated threats.
- To activate this security feature, head over to the Settings app on your iPhone and iPad > Privacy & Security > Lockdown Mode > Turn On Lockdown Mode.
- It’s worth pointing out that this mode restricts most message attachments, disables web previews, blocks wired connections while locked, and limits many advanced features.
2. Update to the Latest Software
It goes without saying, doesn’t it? It’s always recommended to run the latest version of iOS, iPadOS, or macOS. Apple frequently patches vulnerabilities that spyware exploits.
- To update your device, navigate to Settings > General > Software Update.
3. Be Wary of Suspicious Messages
Be warned that many mercenary spyware attacks are zero-click. However, there could be some that rely on deceptive links or malicious attachments.
- Therefore, don’t open links or files from unknown or unexpected sources—even if they appear to come from a known contact.
- Avoid clicking shortened or unfamiliar URLs.
4. Use Built-in Security Features
iOS offers a host of security features to let you offer an extra layer of safeguard to your personal information. Hence, make sure to leverage the full potential of these critical features.
- Enable two-factor authentication (2FA) for your Apple ID by going to the Settings app > Apple ID > Sign In & Security.
- Use Face ID or Touch ID for added device security. To set it up, go to the Settings app > Face ID/Touch ID & Passcode.
- Turn on Find My iPhone to remotely lock or erase your device if needed. To do so, launch the Settings app > Apple ID > Find My.
5. Monitor for Unusual Behavior
Keep an eye on things like battery drain, overheating, microphone/camera indicator lights, and data usage—these could be signs of spyware, although they’re not definitive.
6. Get Professional Help If You Suspect an Attack
If you believe you’ve been targeted, do not hesitate to ask for professional help.
- Contact Apple Support or a digital security expert at the earliest.
- Organizations like Amnesty International and Citizen Lab offer help in spyware detection and digital forensics.
Wrapping up…
And that’s about it! Mercenary spyware attacks are real, and while they primarily target high-risk individuals, the tools used are becoming more sophisticated and widespread. Apple’s warnings are a reminder that device security is not just a tech issue—it’s a human rights issue.
Enabling Lockdown Mode, staying up to date with security patches, and practicing safe digital habits are the best defenses against these invisible threats. So, make sure to stay vigilant and take your digital safety seriously.
