Search
00
GBAF Logo
trophy
Top StoriesInterviewsBusinessFinanceBankingTechnologyInvestingTradingVideosAwardsMagazinesHeadlinesTrends

Subscribe to our newsletter

Get the latest news and updates from our team.

Global Banking & Finance Review®

Global Banking & Finance Review® - Subscribe to our newsletter

Company

    GBAF Logo
    • About Us
    • Advertising and Sponsorship
    • Profile & Readership
    • Contact Us
    • Latest News
    • Privacy & Cookies Policies
    • Terms of Use
    • Advertising Terms
    • Issue 81
    • Issue 80
    • Issue 79
    • Issue 78
    • Issue 77
    • Issue 76
    • Issue 75
    • Issue 74
    • Issue 73
    • Issue 72
    • Issue 71
    • Issue 70
    • View All
    • About the Awards
    • Awards Timetable
    • Awards Winners
    • Submit Nominations
    • Testimonials
    • Media Room
    • FAQ
    • Asset Management Awards
    • Brand of the Year Awards
    • Business Awards
    • Cash Management Banking Awards
    • Banking Technology Awards
    • CEO Awards
    • Customer Service Awards
    • CSR Awards
    • Deal of the Year Awards
    • Corporate Governance Awards
    • Corporate Banking Awards
    • Digital Transformation Awards
    • Fintech Awards
    • Education & Training Awards
    • ESG & Sustainability Awards
    • ESG Awards
    • Forex Banking Awards
    • Innovation Awards
    • Insurance & Takaful Awards
    • Investment Banking Awards
    • Investor Relations Awards
    • Leadership Awards
    • Islamic Banking Awards
    • Real Estate Awards
    • Project Finance Awards
    • Process & Product Awards
    • Telecommunication Awards
    • HR & Recruitment Awards
    • Trade Finance Awards
    • The Next 100 Global Awards
    • Wealth Management Awards
    • Travel Awards
    • Years of Excellence Awards
    • Publishing Principles
    • Ownership & Funding
    • Corrections Policy
    • Editorial Code of Ethics
    • Diversity & Inclusion Policy
    • Fact Checking Policy
    Original content: Global Banking and Finance Review - https://www.globalbankingandfinance.com

    A global financial intelligence and recognition platform delivering authoritative insights, data-driven analysis, and institutional benchmarking across Banking, Capital Markets, Investment, Technology, and Financial Infrastructure.

    Copyright © 2010-2026 - All Rights Reserved. | Sitemap | Tags

    Editorial & Advertiser disclosure

    Global Banking & Finance Review® is an online platform offering news, analysis, and opinion on the latest trends, developments, and innovations in the banking and finance industry worldwide. The platform covers a diverse range of topics, including banking, insurance, investment, wealth management, fintech, and regulatory issues. The website publishes news, press releases, opinion and advertorials on various financial organizations, products and services which are commissioned from various Companies, Organizations, PR agencies, Bloggers etc. These commissioned articles are commercial in nature. This is not to be considered as financial advice and should be considered only for information purposes. It does not reflect the views or opinion of our website and is not to be considered an endorsement or a recommendation. We cannot guarantee the accuracy or applicability of any information provided with respect to your individual or personal circumstances. Please seek Professional advice from a qualified professional before making any financial decisions. We link to various third-party websites, affiliate sales networks, and to our advertising partners websites. When you view or click on certain links available on our articles, our partners may compensate us for displaying the content to you or make a purchase or fill a form. This will not incur any additional charges to you. To make things simpler for you to identity or distinguish advertised or sponsored articles or links, you may consider all articles or links hosted on our site as a commercial article placement. We will not be responsible for any loss you may suffer as a result of any omission or inaccuracy on the website.

    1. Home
    2. >Top Stories
    3. >Cyber arms dealer exploits new iPhone software vulnerability, affecting most versions, say researchers
    Why waste money on news and opinion when you can access them for free?

    Take advantage of our newsletter subscription and stay informed on the go!

    Subscribe

    Top Stories

    Cyber Arms Dealer Exploits New iPhone Software Vulnerability, Affecting Most Versions, Say Researchers

    Published by maria gbaf

    Posted on September 14, 2021

    4 min read

    Last updated: February 11, 2026

    Add as preferred source on Google
    This image highlights the serious cybersecurity threat posed by the NSO Group's new iPhone hacking tool, which exploits a critical software vulnerability affecting multiple Apple devices. The article discusses how this technique bypasses Apple's security measures, emphasizing the need for constant vigilance in digital security.
    Cyber security concerns over iPhone vulnerabilities exploited by NSO Group - Global Banking & Finance Review
    Tags:cybersecuritytechnologyfinancial services

    New iPhone Exploit Discovered by Cyber Arms Dealer, Researchers Warn

    By Joseph Menn and Christopher Bing

    (Reuters) -A cyber surveillance company based in Israel developed a tool to break into Apple iPhones with a never-before-seen technique that has been in use since at least February, internet security watchdog group Citizen Lab said on Monday.

    The discovery is important because of the critical nature of the vulnerability, which requires no user interaction and affects all versions of Apple’s iOS, OSX, and watchOS, except for those updated on Monday.

    The tool developed by the Israeli firm, named NSO Group, defeats security systems designed by Apple in recent years.

    Apple said it fixed the vulnerability in Monday’s software update, confirming Citizen Lab’s finding. https://citizenlab.ca/2021/09/forcedentry-nso-group-imessage-zero-click-exploit-captured-in-the-wild

    “After identifying the vulnerability used by this exploit for iMessage, Apple rapidly developed and deployed a fix in iOS 14.8 to protect our users,” said Ivan Krstić, head of Apple Security Engineering and Architecture, in a statement. “Attacks like the ones described are highly sophisticated, cost millions of dollars to develop, often have a short shelf life, and are used to target specific individuals.”

    “While that means they are not a threat to the overwhelming majority of our users, we continue to work tirelessly to defend all our customers, and we are constantly adding new protections for their devices and data,” he added.

    An Apple spokesperson declined to comment on whether the hacking technique came from NSO Group.

    In a statement to Reuters, NSO did not confirm or deny that it was behind the technique, saying only that it would “continue to provide intelligence and law enforcement agencies around the world with life-saving technologies to fight terror and crime.”

    ‘SOFT UNDERBELLY OF DEVICE SECURITY’

    Citizen Lab said it found the malware on the phone of an unnamed Saudi activist and that the phone had been infected with spyware in February. It is unknown how many other users may have been infected.

    The intended targets would not have to click on anything for the attack to work. Researchers said they did not believe there would be any visible indication that a hack had occurred.

    The vulnerability lies in how iMessage automatically renders images. IMessage has been repeatedly targeted by NSO and other cyber arms dealers, prompting Apple to update its architecture. But that upgrade has not fully protected the system.

    “Popular chat apps are at risk of becoming the soft underbelly of device security. Securing them should be top priority,” said Citizen Lab researcher John Scott-Railton.

    The U.S. Cybersecurity and Infrastructure Security Agency had no immediate comment.

    Citizen Lab said multiple details in the malware overlapped with prior attacks by NSO, including some that were never publicly reported. One process within the hack’s code was named “setframed,” the same name given in a 2020 infection of a device used by a journalist at Al Jazeera, the researchers found.

    “The security of devices is increasingly challenged by attackers,” said Citizen Lab researcher Bill Marczak.

    A record number of previously unknown attack methods, which can be sold for $1 million or more, have been revealed this year. The attacks are labeled “zero-day” because software companies had zero days’ notice of the problem.

    Along with a surge in ransomware attacks against critical infrastructure, the explosion in such attacks has stoked a new focus on cybersecurity in the White House as well as renewed calls for regulation and international agreements to rein in malicious hacking.

    The FBI has been investigating NSO, and Israel has set up a senior inter-ministerial team to assess allegations that its spyware has been abused on a global scale.

    Although NSO has said it vets the governments it sells to, its Pegasus spyware has been found on the phones of activists, journalists and opposition politicians in countries with poor human rights records.

    (Reporting by Christopher Bing and Joseph Menn; Editing by Sonya Hepinstall and Karishma Singh)

    Frequently Asked Questions about Cyber arms dealer exploits new iPhone software vulnerability, affecting most versions, say researchers

    1What company developed the tool to exploit the iPhone vulnerability?

    The tool was developed by an Israeli cyber surveillance company named NSO Group.

    2How does the iPhone vulnerability work?

    The vulnerability allows attackers to exploit iMessage without any user interaction, meaning the intended targets do not need to click on anything for the attack to succeed.

    3What did Apple do in response to the discovered vulnerability?

    Apple confirmed the vulnerability and stated that it fixed it in a software update released on Monday, specifically in iOS 14.8.

    4What are 'zero-day' attacks?

    Zero-day attacks refer to previously unknown attack methods that can be sold for significant amounts, often over $1 million, as they exploit vulnerabilities before they are patched.

    5What has been the global reaction to NSO Group's spyware?

    NSO Group's spyware has been found on the phones of activists, journalists, and opposition politicians, raising concerns about human rights abuses and prompting investigations by the FBI and Israeli authorities.

    Previous Top Stories PostEngland to Offer Covid Vaccine to All 12- to 15-year-olds
    Next Top Stories PostFactbox-What’s on Tap at Apple’s ‘California Streaming’ Event?
    More from Top Stories

    Explore more articles in the Top Stories category

    Image for Lessons From the Ring and the Deal Table: How Boxing Shapes Steven Nigro’s Approach to Banking and Life
    Lessons From the Ring and the Deal Table: How Boxing Shapes Steven Nigro’s Approach to Banking and Life
    Image for Joe Kiani in 2025: Capital, Conviction, and a Focused Return to Innovation
    Joe Kiani in 2025: Capital, Conviction, and a Focused Return to Innovation
    Image for Marco Robinson – CLOSE THE DEAL AND SUDDENLY GROW RICH
    Marco Robinson – Close the Deal and Suddenly Grow Rich
    Image for Digital Tracing: Turning a regulatory obligation into a commercial advantage
    Digital Tracing: Turning a Regulatory Obligation Into a Commercial Advantage
    Image for Exploring the Role of Blockchain and the Bitcoin Price Today in Education
    Exploring the Role of Blockchain and the Bitcoin Price Today in Education
    Image for Inside the World’s First Collection Industry Conglomerate: PCA Global’s Platform Strategy
    Inside the World’s First Collection Industry Conglomerate: Pca Global’s Platform Strategy
    Image for Chase Buchanan Private Wealth Management Highlights Key Autumn 2025 Budget Takeaways for Expats
    Chase Buchanan Private Wealth Management Highlights Key Autumn 2025 Budget Takeaways for Expats
    Image for PayLaju Strengthens Its Position as Malaysia’s Trusted Interest-Free Sharia-Compliant Loan Provider
    PayLaju Strengthens Its Position as Malaysia’s Trusted Interest-Free Sharia-Compliant Loan Provider
    Image for A Notable Update for Employee Health Benefits:
    A Notable Update for Employee Health Benefits:
    Image for Creating Equity Between Walls: How Mohak Chauhan is Using Engineering, Finance, and Community Vision to Reengineer Affordable Housing
    Creating Equity Between Walls: How Mohak Chauhan Is Using Engineering, Finance, and Community Vision to Reengineer Affordable Housing
    Image for Upcoming Book on Real Estate Investing: Harvard Grace Capital Founder Stewart Heath’s Puts Lessons in Print
    Upcoming Book on Real Estate Investing: Harvard Grace Capital Founder Stewart Heath’s Puts Lessons in Print
    Image for ELECTIVA MARKS A LANDMARK FIRST YEAR WITH MAJOR SENIOR APPOINTMENTS AND EXPANSION MILESTONES
    Electiva Marks a Landmark First Year With Major Senior Appointments and Expansion Milestones
    View All Top Stories Posts