Duo's security team explores how the T2 coprocessor is being used by Apple and how it fits into the larger system security model, as well as how this may evolve in the future.
The Duo Labs team shares their writeup of the 2017 SANS Holiday Hack Challenge, detailing useful exploitation techniques used to solve eight different technical challenges.
The security research team at Duo known as Duo Labs has published a research paper on Apple’s EFI firmware security - learn more about their findings and recommendations, including a link to security tools developed to mitigate the risk. Get the full technical paper here.
The macOS Phishing Easy Button: AppleScript Dangers Duo Labs / Featured Article
An attacker can send phishing dialogs to users by writing a few lines of AppleScript, effectively allowing them to steal Apple ID or local user account credentials. Here’s our technical overview of the dangers of AppleScript.
Recent events surrounding Apple and widely-reported vulnerabilities of its Macintosh products are once more emphasizing the importance of applying macOS security updates as quickly as possible.
Out-of-date endpoints pose a major security risk for any organization. See Duo’s data on customer adoption of macOS 10.12, and learn more about how you can ensure regular, timely updates to protect against the latest threats.