Warning: If You Own an iPhone, Watch Out for These Alerts
Anyone with an iPhone must look out for two alerts – and if you see either, you should act. Apple has extremely sophisticated ways of tracking when you’re being personally targeted by cyber-criminals.
And if it thinks you’re the focus of a “mercenary spyware attack”, it will warn you. These are called Apple Threat Notifications, and they should be taken extremely seriously. “Apple threat notifications are designed to inform and assist users who may have been individually targeted by mercenary spyware attacks, likely because of who they are or what they do,” Apple explained in an official security memo published on last week.
But Apple notes: “The vast majority of users will never be targeted by such attacks.” Apple recently issued threat notifications to people in dozens of countries.
The Alert
There are two ways that you’ll be informed you’ve been targeted. The first is that a Threat Notification will appear at the top of the page when you sign into the Apple ID website. And the second is a notification via email and iMessage – these will be sent to the addresses and numbers associated with your Apple ID.
If you see either notification, you must follow any instructions in the email. This might involve updating your iPhone with the latest security upgrades, or even activating Lockdown Mode. “Apple threat notifications are high-confidence alerts that a user has been individually targeted by a mercenary spyware attack, and should be taken very seriously,” Apple explained.
Apple Security Tips
Here are Apple’s official tips for improving security on your iPhone:
– Update devices to the latest software, as that includes the latest security fixes
– Protect devices with a passcode
– Use two-factor authentication and a strong password for Apple ID
– Install apps from the App Store
– Use strong and unique passwords online
– Don’t click on links or attachments from unknown senders
“We are unable to provide information about what causes us to issue threat notifications, as that may help mercenary spyware attackers adapt their behavior to evade detection in the future.” The iPhone maker added: “We strongly suggest you enlist expert help, such as the rapid-response emergency security assistance provided by the Digital Security Helpline at the nonprofit Access Now.”
What is Lockdown Mode?
One option for you if you’re being targeted with this kind of attack is Lockdown Mode. Lockdown Mode was added to the iPhone with the iOS 16 update (and then upgraded further in iOS 17). It’s designed as an extreme option if you’re being targeted by rare and sophisticated cyber-attacks.
Apple explains: “When Lockdown Mode is enabled, your device won’t function like it typically does. To reduce the attack surface that potentially could be exploited by highly targeted mercenary spyware, certain apps, websites, and features are strictly limited for security and some experiences might not be available at all.”
iPhone Lockdown Mode – what changes?
However, you’ll still be able to receive phone calls and plain text messages with Lockdown Mode active. To activate Lockdown Mode, you’ll need to make sure your iPhone is updated to iOS 16 or iOS 17. Just go into Settings > General > Software Update to check. Then go into Settings > Privacy & Security > Lockdown Mode, and tap Turn On Lockdown Mode.
You’ll then need to choose Turn On Lockdown Mode again, then tap Turn On & Restart and tap in your passcode. Note that you’ll need to turn on Lockdown Mode separately for your iPad and Mac – it won’t sync from your iPhone. However, it will be automatically activated for your paired Apple Watch. And you’ll be prompted to activate it on your other devices.
You can exclude specific apps or websites from being impacted by Lockdown Mode in Settings.