iPhone spyware attacks & the realities of incognito mode

Hi, Friends —

✰ Welcome to [our digital disco]! Today we’re diving into the spyware attacks that might be hitting your iPhone, and the realities of using Incognito Mode. You can also check out last week’s newsletter here.

Notable Themes

☞ Apple’s global warning about spyware attacks

Apple has issued warnings to iPhone users in 92 countries about possible targeting by spyware attacks. In short, Apple identified attempts to remotely access certain users' iPhones. While the warnings coincide with increasing worries about government-backed attempts to influence elections, Apple decided to drop the phrase 'state-sponsored' from its description of the attackers, likely in an attempt to remain apolitical.

The notification: “Apple detected that you are being targeted by a mercenary spyware attack that is trying to remotely compromise the iPhone associated with your Apple ID [-xxx-]. This attack is likely targeting you specifically because of who you are or what you do… Apple has high confidence in this warning — please take it seriously.”

• Mercenary spyware attacks are when hired groups use advanced spying software to secretly gather information from specific people or organizations. They might collect data like keystrokes, access files and messages, track locations, or exploit device weaknesses. These attacks are often for spying, surveillance, or cyber-espionage, and they're a big threat to privacy, security, and personal data.

• Why does it matter? Apple's warnings highlight the real threat of spyware attacks targeting individuals based on who they are or what they do. Spyware attacks targeting high-profile individuals can influence elections and other events by gathering sensitive information or manipulating communication channels. For example, by accessing confidential campaign strategies or compromising key figures' communications, attackers can disrupt election processes, manipulate public opinion, or gain an unfair advantage. Such incidents can undermine trust in democratic processes and have far-reaching consequences for political outcomes and public trust.Even if you're not someone high-profile, spyware attacks can still compromise your privacy and security. These attacks aim to gather personal information, which can lead to identity theft or unauthorized access to sensitive data.

• The year of global elections: In 2024, the world will witness pivotal elections. Nations to highlight include Taiwan, Tunisia, the US, UK, and EU. These elections are crucial as they will shape the future direction of countries and have far-reaching implications for policies, economies, and international relations. They hold significance as they dictate policies, international ties, and responses to pressing global challenges like climate change and post-pandemic recovery. Apple’s spyware warning highlights the concern that groups are likely to attempt to influence various 2024 elections to support their interests and priorities on the global stage. Through influencing elections, countries can potentially mold policies, forge international alliances, and impact crucial matters such as advocating for conflict (e.g., invading another country) and the trade of weapons.

☞ The realities of online privacy: Insights from Google's Incognito Mode

In early April, Google resolved a lawsuit by agreeing to delete billions of data records from Incognito Mode users. The window must also clearly state that Google collects data from third-party websites regardless of the browsing mode used. The suit revealed that Google’s ‘Incognito’ window isn’t actually private — just more private than a regular window.

• Why does it matter? Even in Incognito Mode, companies like Google can still collect data about users' browsing activities. This resolution highlights the limits of our privacy tools and the extent of data collection by tech companies. It also serves as a reminder to us as users to be more cautious and informed about our online privacy choices.

• Pros: The agreement signals a push for greater transparency and accountability in the tech industry, which could lead to better privacy practices. Google’s agreement to delete data from Incognito mode is a step toward transparency in tech companies' handling of user data. This highlights the importance of holding tech companies accountable for their privacy policies.

• Cons: The lawsuit shows broader issues with online privacy, the challenges users face in protecting their data, and emphasizes the need for stronger regulations and standards for online privacy protection. Incognito mode doesn't guarantee full privacy, and the lawsuit doesn't address the extent of data collection in regular windows either. Robust user privacy and data rights across all browsing options will be a lengthy process. We have a glimpse of the progress through global debates over regulation:In the US, no national legislation exists, though at least 15 states have enacted their own data privacy laws. Much further ahead, the UK’s most well-known data protection law is the General Data Protection Regulation (GDPR), which ruled that users have to explicitly consent to their data being taken.

Snacktime

📓 Reading: How Israel Defended Against Iran's Drone and Missile Attack — a piece that reveals how Israel’s “Iron Dome” defense system works, and the role of its allies.

♬ Listening to: Glass Animals’ new release, Creatures in Heaven

✰ Thinking about: Language. I’m lucky to write this newsletter from Latin America this week, and my daily interactions have made me realize just how much more I can express my thoughts, personality, and humor in my native language (English). It’s been a humbling and healthy challenge to be forced to outside my comfort zone like this.

✿ As always — any and all feedback is welcome!