MDM Comparison Table
https://github.com/hkystar35/MDM/blob/main/Apple/MDM%20Comparison%20Table.md
I’ve merged the updated table format from the dev branch to main

Highlights:
- Key table added
- Broke out the old “Name” and “Category” columns into Feature, Category, and OS to make it easier to identify features and where they apply
- Updated many Names / Features
- Added a few Features
- Added #intune

"The Mac Malware of 2023" published by Objecive-see. #RustBucket, #SmoothOperator, #ObjCShellz, #macOS, #KANDYKORN, #JokerSpy, #JumpCloud, #CTI, #OSINT, #LAZARUS https://objective-see.org/blog/blog_0x77.html

Hey all. I’ve been wanting to update this MDM comparison table, as well as add Intune (I haven’t gone through Intune’s features yet) to it

Please check out the dev branch table and offer up any feedback in the form of a PR

https://github.com/hkystar35/MDM/blob/dev/Apple/MDM%20Comparison%20Table.md

(From my old blog post https://sysmansquad.com/2022/05/03/2022-05-03-evaluating-apple-mdm-products/)

Latest issue of my curated #cybersecurity and #infosec list of resources for week #30/2023 is out! It includes the following and much more:

➝ #BlueBravo Deploys GraphicalProton Backdoor Against European Diplomatic Entities
➝ #CoinsPaid Blames North Korean Hackers for $37 Million Cryptocurrency Heist
➝ #BreachForums database and private chats for sale in hacker data breach
➝ Up to 11 Million People Hit by #MOVEit Hack at Government Services Firm Maximus
➝ Cybersecurity Agencies Warn Against #IDOR Bugs Exploited for Data Breaches
➝ GameOver(lay): Two Severe #Linux Vulnerabilities Impact 40% of Ubuntu Users
➝ #Deloitte denies #Cl0p data breach impacted client data in wake of MOVEit attack
➝ US Senator Wyden Accuses #Microsoft of ‘Cybersecurity Negligence’
➝ #CardioComm, a provider of #ECG monitoring devices, confirms cyberattack downed its services
➝ Fenix #Cybercrime Group Poses as Tax Authorities to Target Latin American Users
➝ #SEC now requires companies to disclose cyberattacks in 4 days
➝ #NATO investigates alleged data theft by #SiegedSec hackers
➝ Russian Cybersecurity Firm Founder Jailed for 14 Years
➝ ️ Maritime Cyberattack Database Launched by Dutch University
➝ Realst Mac #malware targets macOS #Sonoma
➝ #IBM Report: Half of Breached Organizations Unwilling to Increase Security Spend Despite Soaring Breach Costs
➝ Researchers find deliberate #backdoor in police radio #encryption algorithm
➝ #JumpCloud hack linked to #NorthKorea after #OPSEC mistake
➝ #Ivanti patches MobileIron zero-day bug exploited in attacks
➝ #Norway government ministries hit by cyber attack
➝ #Zenbleed attack leaks sensitive data from #AMD Zen2 processors
➝ #Apple fixes new zero-day used in attacks against iPhones, Macs
➝ #Banking Sector Targeted in Open-Source Software Supply Chain Attacks

#opensource #TETRA #IoT #MIoT #security

This week's recommended reading is: "Evading EDR: A Comprehensive Guide to Defeating Endpoint Detection Systems" by Matt Hand

Subscribe to the #infosecMASHUP newsletter to have it piping hot in your inbox every week-end

https://infosec-mashup.santolaria.net/p/infosec-mashup-week-302023

Latest issue of my curated #cybersecurity and #infosec list of resources for week #29/2023 is out! It includes the following and much more:

➝ #Russia Seeks 18 Years in Jail for Founder of #Cybersecurity Firm
➝ Pro-Russian hacktivists increase focus on Western targets. The latest is #OnlyFans
➝ #DDoS Botnets Hijacking #Zyxel Devices to Launch Devastating Attacks
➝ New #P2PInfect Worm Targeting Redis Servers on #Linux and #Windows Systems
➝ #Google restricting internet access to some employees to reduce #cyberattack risk
➝ #Apple slams UK surveillance-bill proposals
➝ Cybersecurity firm #Sophos impersonated by new #SophosEncrypt ransomware
➝ #Ukraine takes down massive bot farm, seizes 150,000 SIM cards
➝ #CISA and #NSA Issue New Guidance to Strengthen #5G Network Slicing Against Threats
➝ Chinese #APT41 Hackers Target Mobile Devices with New WyrmSpy and DragonEgg #Spyware
➝ Famed Hacker Kevin Mitnick Dead at 59
➝ U.S. Government Blacklists #Cytrox and #Intellexa Spyware Vendors for Cyber Espionage
➝ #Citrix alerts users to critical vulnerability in Citrix ADC and Gateway
➝ #VirusTotal Data Leak Exposes Some Registered Customers' Details
➝ FIN8 Group Using Modified Sardonic #Backdoor for #BlackCat Ransomware Attacks
➝ #GitHub Security alert: social engineering campaign targets technology industry employees
➝ Analysis of #Storm0558 techniques for unauthorized email access
➝ #Microsoft Bug Allowed Hackers to Breach Over Two Dozen Organizations via Forged Azure AD Tokens
➝ White House, #FCC advance efforts to add security labels to connected devices
➝ Police arrests Ukrainian #scareware developer after 10-year hunt
➝ #Norway Threatens $100,000 Daily Fine on #Meta Over Data
➝ Two New Adobe #ColdFusion Vulnerabilities Exploited in Attacks
➝ #JumpCloud Says Sophisticated Nation-State Hackers Targeted Specific Customers
➝ #MOVEit Hack: Number of Impacted Organizations Exceeds 340

This week's recommended reading is: "Leadership Is Changing the Game - The Transition from Technical Expert to Leader" by Brian Donovan

Subscribe to the #infosecMASHUP newsletter to have it piping hot in your inbox every week-end

https://infosec-mashup.santolaria.net/p/infosec-mashup-week-292023

A #DPRK government-backed hacking group (known as Labyrinth Chollima) penetrated #JumpCloud and used it as a springboard to target #cryptocurrency companies in an effort to steal digital cash, reports Reuters.

JumpCloud, an IT firm serving 200,000 orgs, says it was hacked by nation-state - Enlarge

JumpCloud, a cloud-based IT management service that l... - https://arstechnica.com/?p=1954537 #securitybreach #nationstate #jumpcloud #security #biz&it

JumpCloud raises $159M on $2.56B valuation for cloud directory tool - JumpCloud, the late-stage startup that is modernizing the notion of corporate dire... - http://feedproxy.google.com/~r/Techcrunch/~3/GOMwR7wrkEM/ #directoryservices #sapphireventures #recentfunding #jumpcloud #midmarket #startups #funding #jaidas #cloud #smb

JumpCloud raises $75M Series E as cloud directory service thrives during pandemic - JumpCloud, the cloud directory service that debuted at TechCrunch Disrupt Battlefield in 2013, annou... - http://feedproxy.google.com/~r/Techcrunch/~3/fOerS_Hu9Sk/ #directoryservices #recentfunding #enterprise #blackrock #jumpcloud #security #startups #funding #cloud #tc