Prevent A Security Risk To Your Enterprise By Checking Macs – Charles Leaver

Written By Roark Pollock And Presented By Charles Leaver

 

Got Macs? Great. I also own one. Have you locked your Macs down? If not, your business has a possibly serious security weakness.

It’s a fallacy to believe that Macintosh computer systems are naturally protected and don’t have to be safeguarded against hacking or malware. People think Macs are certainly arguably more safe and secure than Windows desktops and notebooks, due to the style of the Unix-oriented kernel. Certainly, we see fewer security patches issued for macOS from Apple, compared to security patches for Windows from Microsoft.

Less security problems is not zero defects. And safer doesn’t imply complete safety.

Examples of Mac Vulnerabilities

Take, for example, the macOS 10.13.3 update, issued on January 23, 2018, for the present versions of the Mac’s os. Like a lot of current computer systems running Intel processors, the Mac was vulnerable to the Meltdown flaw, which implied that harmful applications may be able to read kernel memory.

Apple had to patch this defect – as well as numerous others.

For example, another defect might permit destructive audio files to execute arbitrary code, which could violate the system’s security integrity. Apple needed to patch it.

A kernel defect indicated that a harmful application may be able to execute arbitrary code with kernel privileges, offering hackers access to anything on the device. Apple had to patch the kernel.

A defect in the WebKit library implied that processing maliciously crafted web material might cause random code execution. Apple had to patch WebKit.

Another defect implied that processing a harmful text message may lead to application denial of service, locking up the system. Whoops. Apple had to patch that flaw as well.

Don’t Make The Exact Same Mistakes as Consumers

Many customers, believing all the discussions about how terrific macOS is, decide to run without protection, relying on the macOS and its integrated application firewall software to obstruct all manner of bad code. Problem: There’s no built-in anti virus or anti malware, and the firewall software can just do so much. And many enterprises wish to ignore macOS when it concerns visibility for posture tracking and hardening, and risk detection/ danger hunting.

Customers often make these assumptions due to the fact that they have no idea any better. IT and Security specialists ought to never ever make the very same errors – we should know much better.

If a Mac user installs bad software applications, or includes a malicious browser extension, or opens a bad email attachment, or clicks on a phishing link or a nasty advertisement, their device is corrupted – just like a Windows computer. However within the enterprise, we need to be prepared to handle these concerns, even with Mac computers.

So What Do You Do?

What do you need to do?

– Install anti-virus and anti malware on corporate Mac computers – or any Mac that has access to your company’s material, servers, or networks.
– Track the state of Mac computers, much like you do with Windows computers.
– Be proactive in applying fixes and patches to Macs, once again, similar to with Windows.

You ought to also get rid of Mac computers from your corporate environment which are too old to run the current variation of macOS. That’s a great deal of them, since Apple is respectable at keeping hardware that is older. Here is Apple’s list of Mac designs that can run macOS 10.13:

– MacBook (Late 2009 or more recent).
– MacBook Pro (Mid 2010 or newer).
– MacBook Air (Late 2010 or more recent).
– Mac mini (Mid 2010 or more recent).
– iMac (Late 2009 or newer).
– Mac Pro (Mid 2010 or newer).

When the next variation of macOS comes out, a few of your older computers may drop off the list. They need to fall off your inventory as well.

Ziften’s Perspective.

At Ziften, with our Zenith security platform, we work hard to preserve visibility and security function parity in between Windows systems, macOS systems, and Linux-based systems.

In fact, we’ve partnered with Microsoft to integrate our Zenith security platform with Microsoft Windows Defender Advanced Threat Protection (ATP) for macOS and Linux monitoring and threat detection and response coverage. The integration allows consumers to identify, see, examine, and react to innovative cyber attacks on macOS computers (as well as Windows and Linux-based endpoints) straight within the Microsoft WDATP Management Console.

From our viewpoint, it has actually constantly been important to offer your security groups confidence that every desktop/ notebook endpoint is secured – and therefore, the enterprise is protected.

It can be hard to believe, 91% of businesses say they have a number of Macs. If those Macs aren’t protected, and also properly integrated into your endpoint security systems, the enterprise is not protected. It’s just that basic.

Leave a Reply

Your email address will not be published. Required fields are marked *