This is the commercial Pegasus tool. It's sold to governments and exploits security bugs in iOS etc. There is more here, including a list of dodgy governments that use it.
Apple has responded to the story and their response includes (I'm copying from the referenced item):
"Attacks like the ones described are highly sophisticated, cost millions of dollars to develop, often have a short shelf life, and are used to target specific individuals. While that means they are not a threat to the overwhelming majority of our users, we continue to work tirelessly to defend all our customers, and we are constantly adding new protections for their devices and data."
Expect the next release of iOS to stop Pegasus working, followed by Pegasus using newly-discovered bugs to start working again, followed by Apple fixing... <repeat until the sun goes cold>.