Six Democrats sent a letter to the Director of National Intelligence seeking clarity on whether using a commercial VPN could strip citizens of their privacy rights by exposing them to foreign surveillance laws.
Apple says it has no record of a successful spyware attack against any device running Lockdown Mode, the opt-in security feature it introduced in 2022.
"We are not aware of any successful mercenary spyware attacks against a Lockdown Mode-enabled Apple device," an Apple spokesperson told TechCrunch.
Lockdown Mode is available on the iPhone, iPad, and Mac, and dramatically restricts certain system features that are commonly exploited by mercenary spyware. When enabled, it blocks most message attachment types, disables certain complex web technologies, and prevents devices from automatically joining non-secure Wi-Fi networks, among other restrictions. Apple designed the feature specifically to protect high-risk users such as journalists, activists, lawyers, and others who may be personally targeted by sophisticated nation-state-level attacks.
Donncha Ó Cearbhaill, head of the security lab at Amnesty International, said he and his colleagues "have not seen any evidence of an iPhone being successfully compromised by mercenary spyware where Lockdown Mode was enabled at the time of the attack." Digital rights organizations including Amnesty International and the University of Toronto's Citizen Lab have documented numerous successful spyware attacks on iPhone users over the years, but none have involved a bypass of Lockdown Mode.
Citizen Lab researchers have confirmed at least two cases where Lockdown Mode actively blocked spyware attacks, with one involving NSO Group's Pegasus and another involving Predator spyware, made by a company now part of Intellexa. Google researchers found that spyware was coded to abort its infection attempt if it detected Lockdown Mode was active, apparently to avoid leaving traces that could expose the attack.
Patrick Wardle, an Apple cybersecurity expert, told TechCrunch, "I think it's safe to say, Lockdown Mode is one of the most aggressive consumer-facing hardening features ever shipped."
Apple has begun pushing Lock Screen notifications to iPhones and iPads running older versions of iOS and iPadOS, warning users of active web-based attacks.
The alerts, which appear as a "Critical Software" notification from the Settings app, warn that Apple "is aware of attacks targeting out-of-date iOS software, including the version on your iPhone," and urge users to install a critical update to protect their device. The notifications are being seen on devices running a range of older iOS versions, including iOS 17.0, far beyond the iOS 13 and iOS 14 devices that Apple specifically flagged in its support documentation.
In the documentation, Apple highlighted recent reports about hacking tools that are effective against older versions of iOS. Hackers are using iOS exploit kits known as "Coruna" and "DarkSword," which can take advantage of vulnerabilities in iOS 13 through to iOS 17.2.1. Clicking a malicious link or visiting a compromised website on an unpatched device could result in data being stolen.
"If your iPhone doesn't have the latest software, update iOS to protect your data," Apple says. Users can update by going to Settings, General, and Software Update.
Apple released iOS 15.8.7 and iOS 16.7.15, along with corresponding iPadOS versions, on March 11 to address security vulnerabilities associated with the Coruna exploit kit. Devices running the latest updated versions of iOS 15 through iOS 26 are already protected, while devices on iOS 13 or iOS 14 must update to iOS 15 to receive these protections.
Apple has patched the vulnerabilities as they have come to light over the last several months, so users who have already upgraded to the newest version of iOS available for their iPhone are protected from the malicious websites and links that are circulating right now. Apple Safe Browsing in Safari is enabled by default and blocks the malicious URL domains identified in the attacks.
Users who are unable to update should consider enabling Lockdown Mode, if available, to protect against malicious web content. Lockdown Mode is available on iOS 16 and later.
If you’re an iPhone user in the UK, you might want to hold off on the latest iOS 26.4 update for a bit, as many UK users are reporting problems with the new mandatory online Age Verification system that is included in the latest versions of iOS. Failures and issues with the age verification system ... Read More
When we presented Surfshark with a Data Subject Access Request, the provider was quick to fulfill its GDPR obligations, but the amount of data held on us was alarming
Under GDPR and similar privacy regulations, VPN providers are legally required to share the data they hold on you when asked. I decided to put this basic data right to the test.
Colombia’s President Gustavo Petro ran for president on a campaign promising Paz Total—Total Peace. He promised to give the FARC dissidents, the vicious ELN guerillas, and mafias like the Clan del Golfo a good talking to, and with that, they will just lay down their weapons and become model citizens. Petro promised that through dialogue with bloodthirsty kidnappers and extortionists, they would be willing to stop being bloodthirsty kidnappers and extortionists; as if they are just misunderstood little muffins who only need a hug.
Nubia Carolina Córdoba, governor of Chocó, Colombia (photo from her Twitter account)
According to figures compiled by the Universidad Externado and reported by The City Paper Bogotá, Colombia has recorded 40,663 homicides during the first three years of the Petro presidency. Over 400 human rights defenders have been slaughtered between 2022 and 2025 according to the United Nations Office of the High Commissioner on Human Rights. Human Rights Watch reports that the ELN and FARC dissidents have expanded their territories by up to 55%. They are taking back over Colombia.
Under Gustavo Petro’s watch, Colombia has returned to the Institute for Economics and Peace’s Global Terrorism Index top ten list of countries impacted by terrorism, along with Total Peace destinations like Democratic Republic of Congo, Somalia, and Syria. Just this past week, a Clan del Golfo poster was put up within walking distance from the Aeropuerto Internacional José María Córdova just outside of Medellín. This Total Peace nonsense is a failure.
Right now, in the neglected Pacific department of Chocó, the ELN has kidnapped whole communities. Petro ran a campaign promising that he was going to embrace these historically neglected communities—places like Chocó, Nariño, La Guajira, and Norte de Santander—but insecurity is increasing. Chocó’s governor, Nubia Carolina Córdoba, says 6,047 people are trapped inside of their homes because the ELN has announced an illegal armed curfew in the municipality of Bajo Baudó. Most of these people are already poor, and now they have been kidnapped en masse by this guerilla group that operates with impunity because Gustavo Petro coddles them with “dialogue.”
According to Governor Córdoba, they attacked the police station in the village of Santa Rita using grenades attached to drones. It has gotten so bad that Colombia has restricted the entry of drones into the country. These people are calling out for help, but the president insists on talking as the ELN grows and continues to menace the police forces, the Colombian military, and, most importantly, the innocent public.
There is currently public disorder where belligerents have completely blocked the roads in the north of Antioquia, in the region called Bajo Cauca, and also in the neighboring department of Córdoba. The city of Caucasia is under curfew. Antioquia’s Governor, Andrés Rendón, has urgently called on the national government to stop the talk and take action. Groups are attacking ambulances and burning people’s motorcycles as they try to get by the roadblocks, regardless of the emergency.
Governor Rendón stated: “There can be no dialogue amidst blockades and human rights violations. It’s been seven days now with the Bajo Cauca region paralyzed and the country held hostage by chaos.” He called on the Fiscalía General de la Nación to bring those responsible to justice and challenged the Minister of Defense, Pedro Sánchez, to order the immediate reopening of the roads. “We’re not talking about small-scale miners here; behind this are criminal structures, as everyone knows, that finance themselves through illegal mining and move billions of pesos,” Rendón added, demanding full authority against the criminals who use communities as a shield.
El gobernador de Antioquia, @AndresJRendonC, se pronunció sobre la situación de orden público en el Bajo Cauca, en medio de los bloqueos que ya completan varios días y afectan la movilidad y la seguridad en la región. @GobAntioquiapic.twitter.com/4SPQgTa68r
The current situation with these organized criminal groups—whether regular mafias like the Clan del Golfo or murderous Marxist guerillas like the ELN and the FARC dissidents—is reminiscent of a classroom where a substitute teacher has lost all control. Petro promised Total Peace, but the result has been Total Chaos. Investors do not want to deal with this mess. While the Petro government claims they want tourism to be a major economic driver, road blocks make many areas look like scenes out of Mad Max: Road Warrior. Whole zones of the Pacific coast are unsafe even for residents, met with pure impotence from the regime.
Ten years ago, it was safe to drive from Medellín to the beachside town of Coveñas in Sucre, but that is no longer the case. While it remains safe to visit Colombia for business or tourism in major hubs like Bogotá, Medellín, Santa Marta, or the San Andrés islands, the long-term outlook is concerning. My hope is that Colombians choose a future leader serious about law and order as a prerequisite for human rights. It is not only the government that we need to protect human rights from; those who kill, steal, kidnap, and forcibly recruit children are violating those rights as well.
Colombian anti-explosives experts inspect propaganda by the Clan del Golfo mafia group just minutes away from Medellin’s international airport in March, 2026 (image from Facebook).
Login
