News: Government hackers targeted iPhones owners with zero-days

• Google’s report uncovers government hackers exploiting iPhone vulnerabilities and Variston’s spyware for targeted surveillance.
• The findings highlight the expansion of European spyware manufacturers and commercial surveillance vendors.
• This poses significant threats to freedom of speech, press freedom, and electoral integrity.

In Google’s latest report, government hackers exploiting three unknown vulnerabilities in Apple‘s iPhone operating system were revealed, alongside spyware developed by European startup Variston for targeted surveillance.

On Tuesday, Google’s threat analysis team released a report detailing government exploitation activities involving multiple spyware and exploit sellers, including Barcelona-based startup Variston.

According to Google, government hackers exploited three “zero-day vulnerabilities” in iPhones, unknown to Apple, with one operation conducted using hacking tools developed by surveillance and hacking technology startup Variston.

Also read: Hackers never seem to be satisfied with cryptocurrency theft!

Also read: Apple analyst predicts a substantial drop in iPhone shipment 2024

Variston’s attack was found in March 2023

Google found in March 2023 that unknown Variston customers were using these vulnerabilities to attack iPhones in Indonesia, infecting victims’ phones through SMS containing malicious links, redirecting them to news articles from Indonesian newspaper “Pikiran Rakyat.”

Google also noted Variston’s collaboration with several organisations to develop and provide spyware, one being Protect Electronic Systems from the UAE. Protect, described as a cybersecurity and forensics company, allegedly combines its spyware with the Heliconia framework and infrastructure to create a complete package sold to government clients.

European spyware manufacturers is expanding influence

While Israeli companies like NSO Group, Candiru, and Quadream have garnered attention in recent years, Google’s report highlights the expanding influence and capabilities of European spyware manufacturers.

Google states in the report that commercial surveillance vendors are leading to a dangerous proliferation of hacking tools, threatening freedom of speech, press freedom, and electoral integrity with targeted surveillance.