Zoom for Mac patches get-root bug – update now!
Credit to Author: Paul Ducklin| Date: Mon, 15 Aug 2022 16:26:55 +0000
There’s many a slip ‘twixt the cup and the lip. Or at least between the TOC and the TOU…
Read moreMacOS
What is USB Restricted Mode in macOS Ventura, and why do you want it?
Credit to Author: Jonny Evans| Date: Mon, 15 Aug 2022 06:35:00 -0700
Once upon a time, one attack vector for industrial sabotage consisted of exfiltrating data from Macs using a standard-issue USB storage card. Researchers have also shown that it’s possible to hijack computers with malware-infested cables. It’s a jungle out there, so Apple has toughened up (Apple Silicon) Mac protection with USB Restricted Mode.
What is USB Restricted Mode?
Beginning with macOS Ventura, the new layer of protection comes in the form of USB Restricted mode, which should provide a little reassurance to enterprise IT and is enabled by default.
Apple patches “0-day” browser bug fixed 2 weeks ago in Chrome, Edge
Credit to Author: Paul Ducklin| Date: Thu, 21 Jul 2022 20:38:22 +0000
One vendor’s zero-day is another vendor’s routine patch…
Read moreApple patches “0-day” browser bug fixed 2 weeks ago in Chrome, Edge
Credit to Author: Paul Ducklin| Date: Thu, 21 Jul 2022 12:38:22 +0000
One vendor’s zero-day is another vendor’s routine patch…
Read moreEndpoint security for Mac: 3 best practices
Credit to Author: Bill Cozens| Date: Thu, 14 Jul 2022 14:35:10 +0000
In this post, we break down three endpoint security for Mac best practices to help you prevent phishing attacks, DDoS attacks, and much more.
The post Endpoint security for Mac: 3 best practices appeared first on Malwarebytes Labs.
Read moreUncovering a macOS App Sandbox escape vulnerability: A deep dive into CVE-2022-26706
Credit to Author: Paul Oliveria| Date: Wed, 13 Jul 2022 16:00:00 +0000
Microsoft uncovered a vulnerability in macOS that could allow specially crafted codes to escape the App Sandbox and run unrestricted on the system. We shared these findings with Apple, and fix for this vulnerability, now identified as CVE-2022-26706, was included in the security updates on May 16, 2022.
The post Uncovering a macOS App Sandbox escape vulnerability: A deep dive into CVE-2022-26706 appeared first on Microsoft Security Blog.
Read moreApple slaps hard against ‘mercenary’ surveillance-as-a-service industry
Credit to Author: Jonny Evans| Date: Thu, 07 Jul 2022 06:17:00 -0700
Apple has struck a big blow against the mercenary “surveillance-as-a-service” industry, introducing a new, highly secure Lockdown Mode to protect individuals at the greatest risk of targeted attacks. The company is also offering millions of dollars to support research to expose such threats.
Starting in iOS 16, iPadOS 16 and macOS Ventura, and available now in the latest developer-only betas, Lockdown Mode hardens security defenses and limits the functionalities sometimes abused by state-sponsored surveillance hackers. Apple describes this protection as “sharply reducing the attack surface that potentially could be exploited by highly targeted mercenary spyware.”
How Apple is improving single sign-on
Credit to Author: Jonny Evans| Date: Tue, 28 Jun 2022 07:59:00 -0700
Among a slew of announcements at WWDC this year were some important changes to Apple’s support for single sign-on (SSO). Here’s what’s coming when new updates ship this fall.
SSO + BYOD = iOS 16, iPadOS 16
Apple first introduced SSO support at WWDC 2019 with Sign in with Apple, which also saw the introduction of extensions to enable this kind of authentication. It allowed a user to access a service or website using their Apple ID, and meant support for identity providers, the use of highly secure token-based signatures and the tools service providers required to implement these systems.
Apple says it’s time your business ran BIMI
Credit to Author: Jonny Evans| Date: Thu, 23 Jun 2022 06:41:00 -0700
Apple will add another obstacle against successful phishing attacks in iOS 16, iPadOS 16, and macOS Ventura, which will show a company’s official logo to help recipients recognize genuine from fake emails.
Brand Indicators for Message Identification
Apple’s forthcoming operating systems will support Brand Indicators for Message Identification (BIMI). This is a specification to enable the use of brand-controlled logos within emails and will be a way to tell recipients that an email genuinely comes from the company concerned. Google has supported BIMI since 2021.
Jamf CIO: Apple will be the No. 1 enterprise endpoint by 2030
Credit to Author: Jonny Evans| Date: Thu, 16 Jun 2022 04:02:00 -0700
I spoke with Jamf CIO Linh Lam on a recent UK visit to mark the company’s 20th anniversary. The 2020 Bay Area CIO of the Year Finalist joined Jamf in 2021 – and thinks Apple will be the top enterprise endpoint by 2030 as its current momentum accelerates.
The changing landscape of enterprise IT
“The way the demand is growing and the expectations of younger generations joining the workforce, Apple devices will be the number one endpoint by 2030,” she told me.