In news- Zero-click attack is in news in the backdrop of Pegasus spyware.
- Zero-click attack helps spyware like Pegasus gain control over a device without human interaction or human error.
- They do not require any action from the phone’s user.
- Once a phone is infiltrated, the spyware gains “root-level privileges”.
- After this it can view everything from contact lists to messages and internet browsing history and send the same to the attacker.
- Most of these attacks exploit software which receive data even before it can determine whether what is coming in is trustworthy or not, like an email client.
- These attacks are hard to detect given their nature and hence even harder to prevent.
- Detection becomes even harder in encrypted environments where there is no visibility on the data packets being sent or received.
- One of the things users can do is to ensure all operating systems and software are up to date so that they would have the patches for at least vulnerabilities that have been spotted.