Apple and Google warn users in over 150 countries as sophisticated spyware campaigns push personal security into crisis mode.

Apple and Google’s latest security alerts have sent ripples across the digital world. In early December 2025, both companies issued fresh notifications to users across more than 150 countries, warning them of targeted spyware attacks by sophisticated threat actors. While cyber incidents are not new, the scale, precision, and implications of these warnings mark a profound shift in how global surveillance operates today.

Unlike widespread phishing or malware campaigns that blanket the internet indiscriminately, these alerts focus on individuals likely hand-picked by threat actors. The message is stark: someone is targeting you because of who you are or what you do. Over the past few years, these notifications have been received by journalists, political figures, activists, diplomats, and business leaders—people whose access, influence or information could be valuable to surveillance operators. Yet, this year’s sweeping global reach suggests the threat landscape is evolving, touching new geographies and new kinds of targets.

At the centre of the storm is the growing industry of mercenary spyware. Firms such as Intellexa—already sanctioned by the U.S. government—have developed advanced surveillance tools capable of compromising devices using “zero-click” exploits. This means a phone can be infected without the user tapping a link or downloading anything. Recent research shows that some of these tools can hijack advertising infrastructure: a malicious ad loads on a device, and within seconds, spyware embeds itself deep inside the system.

Once inside, the spyware has astonishing reach. It can access messages, emails, contact lists, location data, the microphone, camera, and even encrypted chats. For the victim, everything appears normal. For the operator, the target’s device becomes a silent surveillance node.

Both Apple and Google have invested heavily in detecting such attacks, and their alerts represent one of the few mechanisms that inform users of potential targeting. Apple’s system notifies users through account banners, emails, and iMessages, urging them to take immediate precautions. Google uses similar threat-detection processes across its ecosystem. Yet, the tech giants acknowledge an uncomfortable truth: even their detection tools cannot catch every sophisticated attack.

For users, the immediate response is crucial. Security experts recommend updating devices instantly, enabling enhanced protections such as Apple’s Lockdown Mode, and avoiding unexpected files or links, no matter how harmless they appear. For individuals in sensitive professions, seeking expert cybersecurity guidance is increasingly becoming a necessity rather than an option.

But the implications extend far beyond individual phones. The global rise of commercial spyware has blurred the boundaries between state surveillance, private cyber-weaponry, and personal privacy. Democracies worry about foreign infiltration; activists fear silencing; citizens confront a growing erosion of digital rights. The latest alerts highlight not just a technical threat but a geopolitical and social one.

As digital life becomes inseparable from physical identity, the stakes of cybersecurity rise with every new exploit. Apple and Google’s warnings may be alarming—but they also serve as a reminder: in an era where phones hold our most intimate worlds, protecting them is no longer optional. It is essential.