InfoSecBulletin Cybersecurity for mankind
Apple has warned again iPhone users in 98 countries about potential spyware attacks. This is the second time this year that the company has issued such a warning, after a similar one in April in 92 countries.
Apple has been sending notifications regularly since 2021. These notifications have reached users in over 150 countries, as stated in a support document on Apple’s website. The most recent warnings, released on Wednesday, did not reveal the identities of the attackers or the countries where users received the notifications.
CVSS 10.0 Flaw
Critical flaw in Siemens OZW Web Servers Enable Unauthenticated RCE
Microsoft Patch Tuesday May 2025: 72 flaws, 5 Actively Exploited Zero-Day
OTP glitch disrupted NID services across the country
Google to pay Texas $1.4 billion for location tracking practices
YouTube geo-blocks at least 4 Bangladeshi TV channels in India
Microsoft Patches Four Critical Azure and Power Apps Vulns
Qilin Ransomware topped April 2025 with 45+ data leak disclosures
SonicWall Patches 3 Flaws in SMA 100 Devices
Top Ransomware Actively Attacking Financial Sector: 406 Incidents Disclosed
Critical (CVSS 10) Flaw in Cisco IOS XE WLCs Allows RRA
“Apple detected that you are being targeted by a mercenary spyware attack that is trying to remotely compromise the iPhone associated with your Apple ID -xxx-,” the company wrote in the warning to affected customers, according to TechCrunch.
“This attack is likely targeting you specifically because of who you are or what you do. Although it’s never possible to achieve absolute certainty when detecting such attacks, Apple has high confidence in this warning — please take it seriously,” Apple added in the text.
Apple recently sent threat notifications to users in India. These notifications were received by several journalists and politicians in the country, as reported by user testimonials. Amnesty International, a human rights advocacy group, later found Pegasus, a highly invasive spyware developed by NSO Group, on the iPhones of prominent Indian journalists.
Apple emphasized the importance of its threat identification methods when informing affected users. They warned that providing more information could help attackers avoid detection in the future.
Apple has also made a notable shift in its language since last year, opting to describe these incidents as “mercenary spyware attacks” instead of the previously used term “state-sponsored” attacks.
