Headline
How to Use Lockdown Mode in iOS 16 to Make Your Phone More Secure
Whether you want to turn off link previews or block unwanted FaceTime calls, here’s what you need to know.
Apple prides itself on the security measures built into its software and hardware—and it continues to add new protections and safeguards over time. Lockdown Mode is a new feature heading to iPhones, iPads, and Macs later this year, and it promises to protect your devices from “highly targeted cyberattacks.”
As you might surmise from the name, Lockdown Mode is a bit like closing the shutters, double-bolting the doors, and turning off all the lights in your home. It severely restricts the kinds of activity allowed on your devices, the logic being that if something unwanted has gained access, the damage will be limited.
For example, attachments other than images get turned off in Messages, and link previews are disabled. Incoming FaceTime calls from unknown numbers are blocked, as are wired connections with other hardware and accessories. Shared albums are removed from the Photos app, and new shared album invitations are blocked.
On a more technical level, a number of web technologies are turned off, including just-in-time (JIT) JavaScript compilation (where code is run and compiled at the same time.) In addition, configuration profiles (for work or school for example) can’t be installed.
Lockdown Mode will be arriving on iPhones with iOS 16.
Courtesy of Apple
Lockdown Mode is disabled by default but can be enabled on an iPhone by going to Settings, then Privacy and Security, then Lockdown Mode. Turning it on or off requires a system reboot and the device’s PIN. While Apple is describing the feature as something for users at risk from "state-sponsored mercenary spyware"—which sounds like high-profile targets—anyone will be able to switch it on for additional protection.
“Lockdown Mode is an extreme, optional protection that should only be used if you believe you may be personally targeted by a highly sophisticated cyberattack,” is the way that Apple puts it in its support documentation. “Most people are never targeted by attacks of this nature.”
As Apple explains, the overall idea is to reduce the attack surface that malware and spyware have access to. Tools including the Pegasus spyware package developed by the NSO Group have the potential to read texts, track calls, collect passwords, monitor a user’s location, and more—and some require no interaction from the user.
With Pegasus, for example, a WhatsApp call to the target device is all it takes for the spyware to start its work, even if the call isn’t answered. It’s worth noting that this particular piece of spyware is blocked from running on devices with iOS 15 or higher installed, but there are plenty of other threats still out there, and plenty more that will be developed in the future.
With Lockdown Mode enabled, it should be much harder for spyware to take root in the first place. If a device has already been compromised, the mode will limit the impact that the malicious code can have. You might want to turn it on while traveling, for example, or if you’ve noticed any suspicious activity on your smartphone.
Turning Lockdown Mode on or off requires a full device reset.
Courtesy of Apple
Apple says it’s going to continue to strengthen Lockdown Mode with additional features over time, and it has also announced a related bug bounty program: Anyone who manages to discover a security vulnerability in the Lockdown Mode protections is eligible for a payout from Apple of up to $2 million. Further funds are being made available for organizations that are fighting back against spyware and cyberattacks.
Those funds will be distributed by representatives from a number of interested parties, including The Engine Room, Amnesty Tech, Access Now, and the Citizen Lab, a security research group operating out of the University of Toronto in Canada.
“There is now undeniable evidence from the research of the Citizen Lab and other organizations that the mercenary surveillance industry is facilitating the spread of authoritarian practices and massive human rights abuses worldwide,” says Ron Deibert, the director of the Citizen Lab.
We’re expecting iOS 16 to launch alongside the new iPhones in September (and iPadOS 16 and macOS Ventura should appear around the same time.) Other security features coming with the update include a Safety Check feature for resetting access to other individuals (useful in domestic and partner violence situations), and Apple will also begin to push out security patches in between major software updates.