Back to Headlines
Tech
May 23, 2026
Analyzed by GPT OSS 120B

Special Phone and App Features That Can Shield You From Spyware

AI Summary
Recent spyware attacks on journalists and activists have spurred Apple, Google, and WhatsApp to roll out built‑in defenses. Enabling these opt‑in features can dramatically reduce the risk of zero‑click infections.

Why Spyware Threats Are No Longer Rare

Over the past decade, government‑backed hackers have moved from occasional experiments to a steady pipeline of sophisticated attacks on journalists, human‑rights defenders, and political dissidents. The shift from rare incidents to a persistent threat landscape makes mobile‑device security a top priority for anyone handling sensitive information.

Recent High‑Profile Spyware Incidents Highlight the Need for Built‑In Defenses

In early 2025, WhatsApp warned roughly 90 European users—many of them journalists—that they were targeted by Paragon Solutions’ Graphite spyware. Months later, Apple sent threat notifications to a new group of iOS users; forensic analysis confirmed two journalists had been compromised via a zero‑click attack.

  • Targeted groups: journalists, civil‑society members, political opponents
  • Attack vector: zero‑click exploits that require no user interaction
  • Tools used: Paragon’s Graphite, NSO Group’s Pegasus (historical reference)

Quantifying the Scale: Users Affected and Costs Involved

While individual cases receive headlines, the broader numbers illustrate the magnitude of the problem.

  • 90 European WhatsApp users notified in 2025
  • Approximately 1,200 users targeted by an NSO Group campaign in 2019
  • WhatsApp’s global base exceeds 3 billion users, making it a lucrative target for spyware developers
  • Exploits for WhatsApp can command prices in the millions of dollars

How Apple, Google, and WhatsApp Are Reinforcing Mobile Security

Tech giants have responded with opt‑in features that trade a small amount of convenience for a large security gain.

  • AppleLockdown Mode: limits background activities, disables certain iMessage features, and isolates high‑risk apps. Citizen Lab documented that Lockdown Mode stopped a Pegasus attack, and Apple reports no successful breaches on devices with the mode enabled as of March 2026.
  • GoogleAdvanced Protection Program (since 2017) and Android’s Advanced Protection Mode (launched last year): require physical security keys, enforce stricter recovery options, and restrict high‑risk app behaviors.
  • WhatsAppStrict Account Settings: an opt‑in toggle that activates additional privacy controls on both Android and iOS, limiting data exposure to third‑party services.

All three solutions are free, easy to enable, and can be disabled temporarily if they interfere with specific workflows.

What Users Should Expect From Future Mobile‑Security Features

Security researchers, including Runa Sandvik, stress that these protections are “the best defense we have today.” As spyware developers evolve, we can anticipate:

  • More granular, per‑app lockdown options that preserve usability while maintaining high security
  • Integration of AI‑driven anomaly detection to flag suspicious background activity
  • Wider adoption of hardware‑based security keys across consumer devices

For anyone who may be a surveillance target—or simply values privacy—activating these built‑in features now offers the strongest line of defense against the next generation of mobile spyware.