Apple Warns Users in France of Targeted Spyware Campaign
Apple has recently alerted its users in France about a spyware operation affecting their devices, as outlined by the Computer Emergency Response Team of France (CERT-FR). This advisory, sent out on September 3, 2025, marks the fourth instance this year that Apple has issued warnings to citizens regarding potential compromises linked to their iCloud accounts.
Ongoing Alerts for Vulnerable Users
The CERT-FR agency has not disclosed specific details about the latest alerts but pointed out that similar notifications were issued previously on March 5, April 29, and June 25. These warnings have become routine since Apple began notifying users in November 2021. The consistent alerts indicate a troubling trend of highly-targeted attacks on individuals in influential positions, such as journalists, lawyers, activists, politicians, and key members of strategic sectors.
Recent Developments in Spyware Threats
This announcement comes in the wake of a troubling revelation: a security vulnerability in WhatsApp (designated CVE-2025-55177) has now been associated with an Apple iOS bug (CVE-2025-43300). This combination of vulnerabilities has created opportunities for zero-click attacks, making users particularly susceptible to spyware.
WhatsApp confirmed to The Hacker News that it sent in-app notifications to fewer than 200 users who could have been targeted in this coordinated campaign. However, the identity of the actors behind this operation and the specific commercial spyware vendor involved remain unknown.
Enhancements in Security Features
In response to the rising threat of spyware, Apple has introduced a new security feature in its latest iPhone models called Memory Integrity Enforcement (MIE). This technology aims to combat memory corruption vulnerabilities that exploit zero-day flaws, making it increasingly difficult for surveillance vendors to implant spyware into users’ devices.
Rising U.S. Investment in Spyware Technologies
A recent report released by the Atlantic Council highlights a significant increase in U.S. investment in spyware and surveillance technologies. The number of U.S. investors jumped from 11 in 2023 to 31 last year, outpacing investments from other countries such as Israel, Italy, and the United Kingdom.
The report identifies a troubling surge in the number of entities entering the spyware market: it highlights two holding companies, 55 individuals, 34 investors, 18 partners, seven subsidiaries, 10 suppliers, and four vendors that emerged within the last year alone. This growth isn’t just confined to the U.S.; new spyware firms have also appeared in Japan, Malaysia, and Panama, as well as established players like Israel’s Bindecy and Italy’s SIO.
The Evolving Landscape of Spyware and Surveillance
According to the study, U.S.-based entities represent a staggering threefold increase in the spyware market compared to the next three leading countries. Notably, 56% of investors in this space are based in the U.S., Israel, Italy, and the U.K. The report further points out that resellers and brokers are now becoming key players in the spyware market, capturing a larger share of the market than ever before. These actors are often undervalued and overlooked in current policy discussions, raising concerns about the implications of their growing influence.
While the landscape of cybersecurity continues to evolve, it becomes increasingly vital for users to stay informed and vigilant about potential threats. As spyware tactics become more sophisticated, both technology companies and users must take proactive measures to safeguard their personal and sensitive information.
