Lockdown mode - CyberNcrypt

Mercenary spyware is among the most difficult dangers to counter. It targets an infinitesimally tiny portion of the global population, making it statistically improbable that the vast majority of us would ever see it. Due to the fact that the sophisticated malware primarily targets the most powerful persons (such as diplomats, political dissidents, and attorneys), it has a catastrophic impact that is disproportionate to the tiny number of affected individuals.

Apple’s solution

Apple launched two features to assist consumers who may be individually targeted by some of the most sophisticated digital dangers, such as those developed by private corporations for state-sponsored mercenary malware. Lockdown Mode, the first significant feature of its type, is an extreme, optional defense for the extremely tiny number of customers who face severe, targeted threats to their digital security, and will be available this autumn with iOS 16, iPadOS 16, and macOS Ventura.

Lockdown mode (Picture courtesy – Apple)

Lockdown Mode provides an extreme, optional level of security for the very few users who may be personally targeted by some of the most sophisticated digital threats, such as those developed by NSO Group and other private companies developing state-sponsored mercenary spyware, due to who they are or what they do. Turning on Lockdown Mode in iOS 16, iPadOS 16, and macOS Ventura strengthens device defenses and severely restricts specific features, significantly lowering the attack surface that may possibly be exploited by highly targeted mercenary spyware.

Lockdown Mode incorporates the following safeguards upon launch:

Messages: All message attachment types except photos are prohibited. Some features, such as link previews, are turned off.
Web browsing: Unless the user eliminates a trusted site from Lockdown Mode, some advanced web technologies, such as just-in-time (JIT) JavaScript compilation, are blocked.
Apple services include: Incoming invites and service requests, including FaceTime calls, are prohibited if the user has not previously called or requested the initiator.
When the iPhone is locked, wired connections to a computer or device are disabled.
While Lockdown Mode is enabled, configuration profiles cannot be loaded, and the device cannot be enrolled in mobile device management (MDM).

Apple will continue to improve Lockdown Mode and add more safeguards to it over time. Apple has also developed a new category inside the Apple Security Bounty program to reward researchers who discover any mode bypasses and assist enhance its defenses in order to solicit input and cooperation from the security research community. Bounties are doubled for eligible discoveries in Lockdown Mode, up to a maximum of $2,000,000 – the industry’s largest maximum bounty payment.