You don’t think “the attack affected fewer than a dozen websites that focus on content related to the Uighur community” qualifies as “narrowly focused”?
The phrase “just the Uighurs” does not show up anywhere in the press release; what does show up is “we take the safety and security of all users extremely seriously”.
The point of the press release is not to discuss China’s human rights violations, but to reassure customers that this particular attack did not compromise anyone who did not visit those particular <12 websites during that particular 2-month period.
The same websites also included exploits affecting non-iOS visitors. It would be great if Google, Microsoft, Apple, etc. would come together to jointly denounce China’s suppression of its ethnic minorities, and more generally denounce any state’s use of exploits in public software, but that’s well out of scope for this particular press release.
The phrase “just the Uighurs” does not show up anywhere in the press release; what does show up is “we take the safety and security of all users extremely seriously”.
The point of the press release is not to discuss China’s human rights violations, but to reassure customers that this particular attack did not compromise anyone who did not visit those particular <12 websites during that particular 2-month period.
The same websites also included exploits affecting non-iOS visitors. It would be great if Google, Microsoft, Apple, etc. would come together to jointly denounce China’s suppression of its ethnic minorities, and more generally denounce any state’s use of exploits in public software, but that’s well out of scope for this particular press release.