Apple: iPhone Lockdown Mode "never" hacked
There is currently an attack wave targeting devices with older iOS versions. Apple has commented on the effectiveness of a security feature in this context.
Installing iOS on an iPhone: Various hacks have recently targeted older versions.
(Image: nikkimeel / Shutterstock.com)
iOS and iPadOS users still running older operating system generations are currently being attacked by malware, the source code of which is even publicly available. Simply browsing a website with the integrated browser is enough to get infected. Apple therefore urges users to update to secured versions as quickly as possible. The company has also now begun a push notification campaign to inform affected users.
Devices running older iOS versions from iOS 13 to iOS 17 in older variants can be attacked. The notification states that Apple is aware of reports of attacks that could also affect "the version of your iPhone." Apple has published an overview of the latest updates here. Users should ideally update to iOS 26.4 and iPadOS 26.4 if their device still supports these systems.
Lockdown Mode helps
In connection with the warning campaign, Apple stated that devices running the so-called Lockdown Mode (more on this on heise+) have not yet been successfully attacked. A spokesperson told the IT blog TechCrunch. "We are not aware of any successful mercenary spyware attacks against a Lockdown Mode-enabled Apple device."
Videos by heise
Mercenary spyware is highly complex attack software often targeted at specific individuals, such as politicians, journalists, or business representatives. It sometimes exploits previously unknown vulnerabilities in systems, which are traded for large sums of money.
Usage restrictions
Lockdown Mode was introduced by Apple in 2022 and is therefore available in iOS 16 and later. It is available for iPhone, iPad, Apple Watch, and Mac. However, the feature is not active by default because it restricts the usability of the devices. For example, attachments in the Messages app are blocked, JavaScript in the browser sometimes no longer works, location data in photos is not transmitted, configuration profiles cannot be installed, and invitations to various Apple services are blocked. FaceTime calls can only be made with contacts from the last 30 days, and SharePlay and Live Photos are disabled.
Organizations advocating for digital civil rights recommend Lockdown Mode for individuals who could be targets of attacks. There are reports that the feature has helped prevent attacks, and some spyware products are designed not to activate if Lockdown Mode is present. Security expert Patrick Wardle told TechCrunch that Apple's approach to Lockdown Mode is one of the most aggressive user protection measures ever brought to market for end customers.
(bsc)
