Encryption vs. Predator: How common security tools defeat commercial spyware

This report details how Predator commercial spyware infected a former Egyptian MP via a carrier-level MITM when the victim accessed unsecured HTTP content, exploiting zero-day vulnerabilities to exfiltrate messages, calls, location data and to remotely activate sensors; the authors recommend mitigations including Apple Lockdown Mode, forcing HTTPS connections (e.g., via iVerify), and using trusted VPN services such as Algo.