While the spyware is designed and sold under the conditions that it is only used for the purpose of justice and peacekeeping, it’s no secret that governments all over the place have been abusing their ownership of Pegasus and using it to keep track of innocent civilians, who can be considered threats to the state’s agenda simply for their differing views.
Apple is personally notifying anyone affected from an attack by Pegasus
Apart from launching the huge lawsuit against NSO Group, Apple has also announced that it will personally notify anyone who has been targeted in the past by a particular exploit known to be used by Pegasus, called FORCEDENTRY.
The zero-click exploit (requiring no action from the user to gain entry) has since been patched, but Apple claims that there are still a “small number of users” whose devices have been infiltrated by Pegasus. The number of victims hasn’t been specified.
The only way to ensure that an Apple threat notification sent to your phone is legitimate, is to sign in to appleid.apple.com. If it’s genuine, Apple says it will be “clearly visible at the top of the page after you sign in.”