What are zero-click attacks? Explain the measures that are required to prevent users from the possible threats. (200 Words)
Refer - The Indian Express
Enrich the answer from other sources, if the question demands.
IAS Parliament 3 years
KEY POINTS
· A zero-click attack helps spyware gain control over a device without human interaction or human error.
· One of the worrying aspects of the Pegasus spyware is how it has evolved from its earlier spear-phishing methods using text links or messages to ‘zero-click’ attacks which do not require any action from the phone’s user.
· Attackers take complete control of an Phone in radio proximity without any user interaction.
· Attackers have also exploited vulnerabilities in Whatsapp, where a phone could be infected even if an incoming malicious call was not picked up.
· Zero-click attacks are hard to detect given their nature and hence even harder to prevent.
· Detection becomes even harder in encrypted environments where there is no visibility on the data packets being sent or received.
Measures
· One of the things users can do is to ensure all operating systems and software are up to date so that they would have the patches for at least vulnerabilities that have been spotted.
· Also, it would make sense to not sideload any app and to download only via Google Play or Apple’s App Store.
· One way to go is to stop using apps altogether and switch to the browser for checking mails or social media, even on the phone.
ANIL KUMAR RAM 3 years
IAS Parliament 3 years
Good attempt. Keep Writing.
Prasath 3 years
Pls review
IAS Parliament 3 years
Issues are not needed. Keep Writing.
Asif Ikbal 3 years
Please review
IAS Parliament 3 years
Good attempt. Keep Writing.