iMazing, a mobile device management platform, has now created a spyware detection tool that can detect indicators of infection by NSO's Pegasus and has the ability to detect other threats.
By searching for known malicious file names, links, process names, and emails, iMazing's tool closely resembles that of Amnesty International's Security Lab's open-source Mobile Verification Kit.
The tool is free, but you must connect your iPhone via USB to your computer to use it.
Pegasus Spyware: What Is This Sorcery?
Security experts discovered evidence of Pegasus spyware being deployed on the phones of journalists, lawmakers, and activists in July.
The spyware may be remotely put on a target's iPhone or iPad without the owner's knowledge, providing the person or organization who installed it complete access to the device and all of its data. This includes text messages, emails, and even phone calls that are recorded.
Pegasus was created and is offered by its inventor, the NSO Group, to track criminals and terrorists.
The attack is effective even against the most recent iPhones, with hackers allegedly able to circumvent Apple's newest security patches over a number of years, calling into question the company's reputation for security and privacy.
Because iPhones are a closed platform, it is practically hard for iPhone owners to be aware that their devices have been compromised.
There is currently no sure way to get rid of Pegasus. It's uncertain whether even a factory reset would work because the spyware could be hidden in the lower levels of a system's code.
If your device is infected, changing your device and number may be the best solution. Of course, a new Android or iPhone might be just as easily infiltrated as your old one, though Apple has released the iOS 14.7.1 update, which is thought to solve some of the vulnerabilities involved.
What To Do If iMazing App Says Your Device Is Infected?
First and foremost, don't panic. It's possible that it's a false positive. iMazing requests that you email the report (click reveal report to get directly to the file) to its customer support staff, which will subsequently do additional investigation.
However, the company advises that if you or a family member are involved in a "politically sensitive situation" and receive a positive report, you should immediately remove your SIM card and turn off your iPhone.
Again, the chances of getting a true positive report are quite low but, at the very least, you'll have some peace of mind.