Cyber arms dealer exploits new iPhone software vulnerability, affecting most versions, say researchers | The Business Standard
Skip to main content
  • Latest
  • Economy
    • Banking
    • Stocks
    • Industry
    • Analysis
    • Bazaar
    • RMG
    • Corporates
    • Aviation
  • Videos
    • TBS Today
    • TBS Stories
    • TBS World
    • News of the day
    • TBS Programs
    • Podcast
    • Editor's Pick
  • World+Biz
  • Features
    • Panorama
    • The Big Picture
    • Pursuit
    • Habitat
    • Thoughts
    • Splash
    • Mode
    • Tech
    • Explorer
    • Brands
    • In Focus
    • Book Review
    • Earth
    • Food
    • Luxury
    • Wheels
  • Subscribe
    • Get the Paper
    • Epaper
    • GOVT. Ad
  • More
    • Sports
    • TBS Graduates
    • Bangladesh
    • Supplement
    • Infograph
    • Archive
    • Gallery
    • Long Read
    • Interviews
    • Offbeat
    • Magazine
    • Climate Change
    • Health
    • Cartoons
  • বাংলা
The Business Standard

Thursday
July 24, 2025

Sign In
Subscribe
  • Latest
  • Economy
    • Banking
    • Stocks
    • Industry
    • Analysis
    • Bazaar
    • RMG
    • Corporates
    • Aviation
  • Videos
    • TBS Today
    • TBS Stories
    • TBS World
    • News of the day
    • TBS Programs
    • Podcast
    • Editor's Pick
  • World+Biz
  • Features
    • Panorama
    • The Big Picture
    • Pursuit
    • Habitat
    • Thoughts
    • Splash
    • Mode
    • Tech
    • Explorer
    • Brands
    • In Focus
    • Book Review
    • Earth
    • Food
    • Luxury
    • Wheels
  • Subscribe
    • Get the Paper
    • Epaper
    • GOVT. Ad
  • More
    • Sports
    • TBS Graduates
    • Bangladesh
    • Supplement
    • Infograph
    • Archive
    • Gallery
    • Long Read
    • Interviews
    • Offbeat
    • Magazine
    • Climate Change
    • Health
    • Cartoons
  • বাংলা
THURSDAY, JULY 24, 2025
Cyber arms dealer exploits new iPhone software vulnerability, affecting most versions, say researchers

Tech

Reuters
14 September, 2021, 10:30 am
Last modified: 14 September, 2021, 10:38 am

Related News

  • Software slowdown disrupts customs operations nationwide
  • FaceTime in iOS 26 will pause video calls if sensitive content detected
  • Proton ecosystem review: A privacy-first alternative to big tech
  • Foxconn sends 97% of India iPhone exports to US as Apple tackles Trump's tariffs
  • From Dhaka to Paris: How Kaz Software is making its place on global stage

Cyber arms dealer exploits new iPhone software vulnerability, affecting most versions, say researchers

Apple said it fixed the vulnerability in Monday's software update, confirming Citizen Lab's finding

Reuters
14 September, 2021, 10:30 am
Last modified: 14 September, 2021, 10:38 am
Photo :Reuters
Photo :Reuters

A cyber surveillance company based in Israel developed a tool to break into Apple iPhones with a never-before-seen technique that has been in use since at least February, internet security watchdog group Citizen Lab said on Monday.

The discovery is important because of the critical nature of the vulnerability, which requires no user interaction and affects all versions of Apple's iOS, OSX, and watchOS, except for those updated on Monday.

The tool developed by the Israeli firm, named NSO Group, defeats security systems designed by Apple in recent years.

The Business Standard Google News Keep updated, follow The Business Standard's Google news channel

Apple said it fixed the vulnerability in Monday's software update, confirming Citizen Lab's finding. 

"After identifying the vulnerability used by this exploit for iMessage, Apple rapidly developed and deployed a fix in iOS 14.8 to protect our users," said Ivan Krstić, head of Apple Security Engineering and Architecture, in a statement. "Attacks like the ones described are highly sophisticated, cost millions of dollars to develop, often have a short shelf life, and are used to target specific individuals."

"While that means they are not a threat to the overwhelming majority of our users, we continue to work tirelessly to defend all our customers, and we are constantly adding new protections for their devices and data," he added.

An Apple spokesperson declined to comment on whether the hacking technique came from NSO Group.

In a statement to Reuters, NSO did not confirm or deny that it was behind the technique, saying only that it would "continue to provide intelligence and law enforcement agencies around the world with life-saving technologies to fight terror and crime."

'SOFT UNDERBELLY OF DEVICE SECURITY'

Citizen Lab said it found the malware on the phone of an unnamed Saudi activist and that the phone had been infected with spyware in February. It is unknown how many other users may have been infected.

The intended targets would not have to click on anything for the attack to work. Researchers said they did not believe there would be any visible indication that a hack had occurred.

The vulnerability lies in how iMessage automatically renders images. IMessage has been repeatedly targeted by NSO and other cyber arms dealers, prompting Apple to update its architecture. But that upgrade has not fully protected the system.

"Popular chat apps are at risk of becoming the soft underbelly of device security. Securing them should be top priority," said Citizen Lab researcher John Scott-Railton.

The US Cybersecurity and Infrastructure Security Agency had no immediate comment.

Citizen Lab said multiple details in the malware overlapped with prior attacks by NSO, including some that were never publicly reported. One process within the hack's code was named "setframed," the same name given in a 2020 infection of a device used by a journalist at Al Jazeera, the researchers found.

"The security of devices is increasingly challenged by attackers," said Citizen Lab researcher Bill Marczak.

A record number of previously unknown attack methods, which can be sold for $1 million or more, have been revealed this year. The attacks are labeled "zero-day" because software companies had zero days' notice of the problem.

Along with a surge in ransomware attacks against critical infrastructure, the explosion in such attacks has stoked a new focus on cybersecurity in the White House as well as renewed calls for regulation and international agreements to rein in malicious hacking.

The FBI has been investigating NSO, and Israel has set up a senior inter-ministerial team to assess allegations that its spyware has been abused on a global scale.

Although NSO has said it vets the governments it sells to, its Pegasus spyware has been found on the phones of activists, journalists and opposition politicians in countries with poor human rights records.

Top News / World+Biz

iPhone / software / cyber

Comments

While most comments will be posted if they are on-topic and not abusive, moderation decisions are subjective. Published comments are readers’ own views and The Business Standard does not endorse any of the readers’ comments.

Top Stories

  • Russian An-24 aircraft after a regional passenger plane goes missing in Siberia today (24 July). Photo: Screen grab/Reuters
    Plane with 50 aboard crashes in Russia's far east, no survivors
  • Pay Commission formed to revise salary structure of employees under National Pay Scale
    Pay Commission formed to revise salary structure of employees under National Pay Scale
  • 2 Milestone teachers, who died trying to save students, to be given state honour: Govt
    2 Milestone teachers, who died trying to save students, to be given state honour: Govt

MOST VIEWED

  • Photo: Collected
    Bangladeshi man jailed for life in UK for murdering wife in front of their baby
  • Ctg port authority halts contractor recruitment for Kamalapur ICD operations for two months
    Ctg port authority halts contractor recruitment for Kamalapur ICD operations for two months
  • Fire at Cosmo School in Mirpur on 23 July 2025. Photo: TBS
    Fire breaks out at Cosmo School in Mirpur following generator explosion
  • Representational image. File Photo: Rajib Dhar/TBS
    Debate arises as edu adviser says postponed HSC exams of 22 and 24 July will be held on same day
  • BB issues dress code for all, discourages short-sleeved or length dresses, leggings for female staff
    BB issues dress code for all, discourages short-sleeved or length dresses, leggings for female staff
  • Infographics: TBS
    Stay orders won’t shield defaulters: BB governor 

Related News

  • Software slowdown disrupts customs operations nationwide
  • FaceTime in iOS 26 will pause video calls if sensitive content detected
  • Proton ecosystem review: A privacy-first alternative to big tech
  • Foxconn sends 97% of India iPhone exports to US as Apple tackles Trump's tariffs
  • From Dhaka to Paris: How Kaz Software is making its place on global stage

Features

Photo: Collected

24 July: More than 1400 arrested, 3 missing coordinators found

13h | Panorama
Photo: Mehedi Hasan/TBS

Aggrieved nation left with questions as citizens rally to help at burn institute

1d | Panorama
Photo: Mehedi Hasan/TBS

Mourning turns into outrage as Milestone students seek truth and justice

1d | Panorama
Illustration: TBS

Uttara, Jatrabari, Savar and more: The killing fields that ran red with July martyrs’ blood

2d | Panorama

More Videos from TBS

Bangladesh Bank withdraws dress code guidelines

Bangladesh Bank withdraws dress code guidelines

27m | TBS Today
Thai-Cambodian troops clash over disputed border

Thai-Cambodian troops clash over disputed border

1h | TBS World
Former chief justice Khairul Haque detained

Former chief justice Khairul Haque detained

2h | TBS Today
Why are there renewed tensions between Iran and Israel?

Why are there renewed tensions between Iran and Israel?

3h | Others
EMAIL US
contact@tbsnews.net
FOLLOW US
WHATSAPP
+880 1847416158
The Business Standard
  • About Us
  • Contact us
  • Sitemap
  • Advertisement
  • Privacy Policy
  • Comment Policy
Copyright © 2025
The Business Standard All rights reserved
Technical Partner: RSI Lab

Contact Us

The Business Standard

Main Office -4/A, Eskaton Garden, Dhaka- 1000

Phone: +8801847 416158 - 59

Send Opinion articles to - oped.tbs@gmail.com

For advertisement- sales@tbsnews.net