Back to Headlines
Tech
May 23, 2026
Analyzed by GPT OSS 120B

How New Phone Security Features Shield Users from State‑Sponsored Spyware

AI Summary
Apple, Google and WhatsApp have introduced opt‑in security modes that dramatically raise the bar against sophisticated spyware like Paragon’s Graphite. The measures, proven in real‑world attacks, give journalists, activists and ordinary users a free, easy way to harden their devices.

Executive Summary: Rising Spyware Threats Prompt New Phone Defenses

State‑backed spyware campaigns have moved from rare incidents to a daily reality for journalists, human‑rights defenders and political dissidents. In response, the three biggest mobile ecosystems—Apple, Google and WhatsApp—now offer built‑in, opt‑in features that block zero‑click attacks and limit data exposure.

Apple, Google, and WhatsApp Roll Out Opt‑In Spyware Defenses

Apple introduced Lockdown Mode, a system‑wide hardening option that disables many background services. Google expanded its Advanced Protection Program to Android, mirroring Apple’s approach with hardware‑based security keys. WhatsApp added Strict Account Settings, an OS‑specific privacy toggle that activates additional encryption and session controls.

Numbers Behind the Threat: 90 WhatsApp Users, Hundreds of Spyware Campaigns

  • Early 2025: WhatsApp warned roughly 90 European users of targeting by Paragon Solutions.
  • Subsequent Apple threat notifications confirmed two journalists hit by Paragon’s Graphite zero‑click spyware.
  • Since 2010, more than 1,200 victims have been identified in a 2019 NSO Group campaign against WhatsApp.
  • Exploits for WhatsApp can command prices of several million dollars on the underground market.

Why These Features Matter for Journalists, Activists, and Everyday Users

The new modes give users near‑full control over device sensors, network connections and app interactions, dramatically reducing the attack surface that spyware relies on. Real‑world testing shows Lockdown Mode stopped a Pegasus infection, and no successful attacks have been reported on devices with it enabled.

  • Enables selective disabling of vulnerable services (e.g., USB accessories, iMessage links).
  • Requires a physical security key, thwarting credential‑theft attacks.
  • Provides automatic alerts when suspicious activity is detected.

Future of Mobile Hardening: Wider Adoption and Evolving Threats

Security researchers expect more governments to adopt zero‑click exploits, prompting platforms to iterate on these defenses. As awareness grows, we anticipate broader consumer uptake of Lockdown Mode and Advanced Protection, and a push for similar features on other messaging apps.