How is someone accessing my iPhone without physical access?

I would recommend a Factory Reset using a computer and do not restore from a backup. The computer will restore the OS where that is not done when factory resetting on the device and a backup will just restore the device to exactly like it was before the Factory Reset.

Also check for any Developer Certificates or Profiles installed at Settings > General > VPN & Device Management.

Orange_gladioli wrote:

My very old iPhone got hacked and I could see activity in apps without me touching anything.

That wasn’t a hack, it was either problems from a case or screen-protective film, or from a failing display or digitizer. That causes ghost touches and missed touches. Bad hardware. Not a hack.

I bought a more up-to-date phone so I could have IOS 18. I feel I should have done the reset manually. The night before I saw someone type something into a map app. I go to turn my phone off and I can’t. Nobody else has physical access to my phone or has set up anything else in the past. I’ve clamped down on insecure stuff around Amazon and PayPal, I changed my password and using Touch ID on iPad and iPhone, I blocked scammy callers.

If you never reset the iPhone and never transferred ownership to your own Apple Account, well, that would be a big mistake. One you will want to address soonest.

And then I sit watching as someone logs into CNN.

Which app? Remote access would be very rare and very expensive exploit, and unlikely to arise here. Or maybe it’s a display or digitizer issue yet again.

My privacy settings on Safari say 31 trackers didn’t get to me on there but I never went on there.

What Safari calls trackers are web trackers, and are not relevant to getting physically tracked, or getting hacked.

Will locked private browsing make a difference?

No. Private Browsing reduces what data is preserved within a Safari session through to future sessions, but does not change what remote websites can detect. It’s a means to temporarily shut off local history and such. Nothing more. It does not particularly alter what web sites can see and collect for the incoming web connection.

My provider says there is no spam swap.

I am unfamiliar with a “spam swap”, though spammers do technically swap and sell addresses.

I presume SIM swap was intended. SIM swap isn’t relevant to the reported behavior. Among other details, SIM swapping gives access to the telephone number and to number-based security, not to the connected device itself, and not remote access into the device.

I just need to understand what the main problem is otherwise I’m busy sorting a bunch of the wrong ones.

The main issues here will likely be one of the difficulty of the reproducibility of the reported misbehavior, and the failure to properly transfer ownership of the iPhone including performing the expected reset.

Safari prevents trackers from following you when browsing the web. You don't actually have to go to every website listed there as some websites will redirect automatically or pull data from another website where Safari will continue to block those trackers.

If you are seeing touch events on your screen without you doing anything, then your digitizer is failing and you need the screen replaced. I assume your device has not been jailbroken as that would be an intentional action on your part or a prior owner if you purchased the device used. That eliminates any security measures. Other than that, even if the person knew your Apple Account password, they would not be able to remotely type on your iPhone screen.

Even if the person had your CNN login credentials, they couldn't log into the app on your phone. They would only be able to log in on a device in their possession. I agree with Servant of Cats that this seems improbable.

Orange_gladioli wrote:

You’re really helping me Jim but I’m going with the idea that I’ve been sold something that needs re-checking - would the screen feel quite loose potentially? But then you’re saying about a factory reset from a computer.

Where did you buy the device?

If it did not come directly from Apple or an authorized retailer, then I wouldn't trust it. Personally, I never would have purchased it to begin with.

If you're concerned, make an appointment at the Genius Bar of your local Apple Store.

I don't see how anyone logged onto a CNN entertainment app on your iPhone unless they had physical possession of your Phone. Which you say that they didn't have.