"Timchenko’s hackers used the so-called “PWNYOURHOME” vulnerability, which targets iPhones’ built-in HomeKit functionality and exploits iMessage to install the spyware"

https://meduza.io/en/feature/2023/09/13/the-million-dollar-reporter