The security research team at Duo known as Duo Labs has published a research paper on Apple’s EFI firmware security - learn more about their findings and recommendations, including a link to security tools developed to mitigate the risk. Get the full technical paper here.
The macOS Phishing Easy Button: AppleScript Dangers Duo Labs / Featured Article
An attacker can send phishing dialogs to users by writing a few lines of AppleScript, effectively allowing them to steal Apple ID or local user account credentials. Here’s our technical overview of the dangers of AppleScript.
Recent events surrounding Apple and widely-reported vulnerabilities of its Macintosh products are once more emphasizing the importance of applying macOS security updates as quickly as possible.
Out-of-date endpoints pose a major security risk for any organization. See Duo’s data on customer adoption of macOS 10.12, and learn more about how you can ensure regular, timely updates to protect against the latest threats.