A new development has emerged in the realm of digital security, particularly involving a significant global tech brand. Recently, Citizen Lab uncovered a troubling vulnerability: an iPhone zero-day flaw that was covertly exploited to target journalists with mercenary spyware. Despite Apple’s well-known commitment to robust security, this breach highlights the evolving and sophisticated threats that can affect even the most secure devices. Following the discovery, Apple quickly addressed this critical issue by issuing a patch.

The situation came to light in April 2025, when Apple discreetly informed a select group of iOS users, including two well-known journalists, that their devices had fallen prey to advanced spyware. Citizen Lab conducted a forensic analysis that confirmed these claims, revealing that a notable European journalist and Italian journalist Ciro Pellegrino had been specifically targeted by Graphite spyware, developed by the Israeli company Paragon. This spyware was delivered through a sophisticated iMessage zero-click attack, which means that the victim’s interaction wasn’t necessary; merely receiving a malicious message could compromise the device. Apple classified this vulnerability as CVE-2025-43200 and included a fix in its iOS 18.3.1 update.

Further investigations by Citizen Lab uncovered a clear connection linking both targeted incidents back to the same Paragon operator. This vulnerability took advantage of how iOS managed photos and videos sent via iCloud Links, making it a particularly covert method of attack. Additionally, Francesco Cancellato, a colleague of Pellegrino, had been warned in January 2025 that he was also a target of Paragon’s Graphite spyware, suggesting a broader trend of targeted assaults on media professionals. This incident reflects the ongoing battle between device manufacturers and those creating surveillance technologies.

While Apple has rectified this particular flaw, the prevalence of mercenary spyware and the innovation of its developers emphasize the need for continuous vigilance, particularly for high-risk professionals like journalists.