EletiofeApple’s Lockdown Mode Aims to Counter Spyware Threats

Apple’s Lockdown Mode Aims to Counter Spyware Threats


- Advertisment -

The surveillance-for-hire Industry has emerged in recent years as a very real threat to activists, dissidents, journalists, and human rights defenders around the world, as vendors offer increasingly invasive and effective spyware to governments. The most sophisticated of these tools, like NSO Group’s notorious Pegasus spyware, target victims’ smartphones using rare and sophisticated exploits to compromise Apple’s iOS and Google’s Android mobile operating systems. As the situation has deteriorated for victims, activists and security experts have increasingly called for more drastic measures to protect vulnerable individuals. Now Apple has an option.

Today, Apple is announcing a new feature for its upcoming iOS 16 release called Lockdown Mode. Apple emphasizes that the feature was created for a small subset of users who are at high risk of government targeting, and it doesn’t expect the feature to be widely adopted. But for those who want to use it, the feature is an alternate mode of iOS that heavily restricts the tools and services that spyware actors target to take control of victims’ devices.

“This is an unprecedented step for user security for high-risk users,” Ron Deibert, director of the University of Toronto’s Citizen Lab said on a call with reporters ahead of the announcement. “I believe that this will throw a wrench into their modus operandi. I expect [spyware vendors] to try to evolve, but hopefully, this feature will prevent some of those harms from happening down the road.”

Lockdown Mode is a separate operating system mode. To turn it on, users enable the feature in the Settings menu and then are prompted to restart their device for all of the protections and digital defenses to fully take effect. The feature imposes limitations on the leakiest parts of the operating system sieve. Lockdown Mode attempts to comprehensively address threats from web browsing, for example, by blocking many speed and efficiency features that Safari (and WebKit) use to render webpages. Users can specifically mark a certain webpage as trusted so it loads normally, but by default, Lockdown Mode imposes a host of restrictions that extend anywhere WebKit is working behind the scenes. In other words, when you load web content in a third-party app or an iOS app like Mail, the same Lockdown Mode protections will apply. 

Lockdown Mode also limits all sorts of incoming invitations and requests, unless the device has previously initiated a request. That means your friend won’t be able to call you on FaceTime, for example, if you’ve never called them. And to take it one step further, even when you initiate an interaction with another device, Lockdown Mode only honors that connection for 30 days. If you don’t talk to a particular friend for weeks after that, you’ll need to reestablish contact before they can reach out to you again. In Messages—a frequent target of spyware exploitation—Lockdown Mode won’t show link previews and will block all attachments with the exception of a few trusted image formats.

Lockdown Mode also strengthens other protections. For example, when a device is locked, it won’t receive connections from anything physically plugged into it. And, crucially, a device that isn’t already registered with one of Apple’s enterprise mobile device management (MDM) programs can’t be added to one of these schemes once Lockdown Mode is turned on. This means that if your company gives you a phone enrolled in the corporate MDM, it will remain active if you then enable Lockdown Mode. And the manager of your MDM can’t remotely turn off Lockdown Mode on your device. But if your phone is just a regular consumer device and you put it in Lockdown mode, you won’t be able to activate MDM. This is important because attackers will trick victims into enabling MDM as a way of gaining the ability to install malicious apps on their devices.

Latest news

House Votes to Extend—and Expand—a Major US Spy Program

A controversial US wiretap program days from expiration cleared a major hurdle on its way to being reauthorized.After months...

Change Healthcare Faces Another Ransomware Threat—and It Looks Credible

For months, Change Healthcare has faced an immensely messy ransomware debacle that has left hundreds of pharmacies and medical...

Why Court Sentenced Bobrisky To Six Months In Prison

Bobrisky, the controversial Nigerian cross-dresser and socialite, has been sentenced to six months in prison by the Federal High...

No Vacancy In Ondo Govt House, My Certificate Is Genuine – Governor Aiyedatiwa

Governor Lucky Aiyedatiwa of Ondo State has affirmed the authenticity of his certificate, refuting rumors circulating in some circles...
- Advertisement -

Bobrisky Will Have Difficult Experience In Prison – Inibehe Effiong

According to human rights lawyer Inibehe Effiong, controversial cross-dresser and social media personality Idris Okuneye, widely known as Bobrisky,...

Can You Really Run on Top of a Train, Like in the Movies?

Just because you see something done in a movie, that doesn't mean you should try it yourself. Take, for...

Must read

House Votes to Extend—and Expand—a Major US Spy Program

A controversial US wiretap program days from expiration cleared...

Change Healthcare Faces Another Ransomware Threat—and It Looks Credible

For months, Change Healthcare has faced an immensely messy...
- Advertisement -

You might also likeRELATED
Recommended to you