A vulnerability that affects every iPhone, iPad, Mac, and Apple Watch was discovered by the digital threat research lab Citizen Lab. The firm found evidence of ForcedEntry on an activist's iPhone in August and then realized the exploit worked across the entire Apple ecosystem.
- It was found as part of an investigation into the use of a zero-day vulnerability to hack a Bahrani activist's iPhone.
- The vulnerability exploited a flaw in iMessage to push Pegasus spyware onto the activist's phone.
- Pegasus, by Israeli firm NSO Group, gives hackers full access to their target devices, including personal data, photos, messages, and location.
- Apple has released a security update. All users are urged to update their devices.