Alerts sent across a wide global footprintApple said notifications were dispatched on December 2, without revealing how many users were affected. The company noted that, cumulatively, users in more than 150 countries have received such alerts over time. Google reported a similar trend, confirming that several hundred accounts were flagged in its latest round. Intellexa spyware connected to the latest targetingGoogle said many of the newly identified attempts involved Intellexa’s spyware tools. The company’s threat intelligence team found users targeted in countries including Pakistan, Kazakhstan, Angola, Egypt, Uzbekistan, Saudi Arabia and Tajikistan. Intellexa has previously been sanctioned by the United States for its global surveillance activity. Tech companies avoid naming attackersNeither company disclosed who may be behind the attempts or provided detailed descriptions of the hacking techniques. Apple also did not comment on the nature of the activity detected. Such limited disclosure is typical in cases involving state-backed actors, where revealing methods may compromise ongoing investigations. Previous warnings have triggered official probesEarlier notifications from both firms have resulted in government-level action. The European Union has launched inquiries in the past after senior officials were found to have been targeted with commercial spyware tools. These cases frequently expand into larger examinations of cross-border surveillance practices. Notifications help disrupt surveillance operationsSecurity researchers note that early warnings reduce the effectiveness of spyware campaigns by alerting potential victims. Citizen Lab’s John Scott-Railton said such notifications often become the first step in uncovering broader misuse of surveillance software and lead to accountability for those involved.
