Good for us if it's so. I'm just concerned about the bugs existed for long enough for the exploit to be relevant and still haunting some diplomats' phones, despite so many publications. And many people discussing legal and political (doomed to be inefficient IMHO) rather than technical solutions.

A lot of these issues will not be solvable technically, though. Given the way systems/software is built currently, vulnerabilities are going to exist and there are very highly paid and motivated people working on figuring out how to exploit them. It also does not help that mobile devices are in use for much longer than they receive security updates etc.

I am not saying that these issues can/will be solved by legal and political means (especially given that it is not restricted to a single country), but it seems rather unlikely that these issues can be solved by pure technical means at the current point.

This revelation comes from a security investigation that the Finnish government started in autumn 2021. So when the exploit was discovered, they checked to see if they were hit and hopefully too actions to protect themselves if they were.