{"id":20188,"date":"2022-09-26T08:30:10","date_gmt":"2022-09-26T16:30:10","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2022\/09\/26\/news-13921\/"},"modified":"2022-09-26T08:30:10","modified_gmt":"2022-09-26T16:30:10","slug":"news-13921","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2022\/09\/26\/news-13921\/","title":{"rendered":"Jamf buys ZecOps to bring high-end security to Apple enterprise"},"content":{"rendered":"

<\/p>\n

The Apple-in-the-enterprise story continues to unfold, this week with Jamf’s announced plans to acquire mobile threat detection and response company\u00a0ZecOps<\/a>.<\/p>\n

Jamf will likely reveal more about the motivations behind the deal at its JNUC<\/a> event for Apple admins, which begins tomorrow. The purchase is the latest move by the Apple-focused enterprise MDM provider to supplement device management with an increasingly effective set of tools to bolster device security.<\/p>\n

From here, it seems inevitable the addition of ZecOps tech will give managed Apple devices much greater awareness around the state of endpoint security, while also widening Jamf’s own market.<\/p>\n

ZecOps \u2014 declared one of the world\u2019s most innovative companies in 2021\u2014 is used to protect world-leading enterprises, governments, and individuals, including Bloomberg and the BBC. It famously identified a nasty iOS vulnerability<\/a> in 2020.<\/p>\n

\u201cZecOps\u00a0is the only\u00a0available tool that provides the capability to extract, deliver, and analyze mobile device logs for signs of compromise or malicious activity,\u201d said one customer, described only as \u201cDepartment of State, a G7 government.\u201d<\/p>\n

That\u2019s very much in tune with the times, of course. The pandemic has proven the need to secure endpoints as criminals began targeting users to undermine corporate security systems. ZecOps should extend Jamf\u2019s existing mobile security capabilities by adding advanced threat detection and incident response.<\/p>\n

Ideally, devices should be able to act and react when a recognized exploit is made against them. This seems to be the direction of travel, given that ZecOps provides iOS users with the same level of threat defense Mac users already get using Jamf Protect<\/a>.<\/p>\n

It gives iOS devices some insight into detecting the kinds of sophisticated mobile threats that Apple\u2019s Lockdown mode aims to prevent. Not only that, but a user can run both Lockdown mode<\/a> and ZecOps software at the same time. (You have to install the profiles for ZecOps\/Jamf Protect and\/or any VPN service you use on the device before<\/em> enabling Lockdown Mode.)<\/p>\n

Mobile devices\u00a0now account\u00a0for 59% of global website traffic<\/a>, and according to the 2022\u00a0Verizon Mobile Security Index,<\/a>\u00a0close to half (45%) of companies claim to have suffered some compromise in the last 12 months.<\/p>\n

The addition of the software means Jamf can help accelerate mobile security investigations from weeks to minutes, leveraging known indicators of compromise at-scale and identifying sophisticated 0- or 1-click attacks on a deeper scale.<\/p>\n

Jamf CEO Dean Hager Jamf explained why this matters:\u00a0\u201cWe believe ZecOps has built a differentiated solution that meets a very important need for many organizations \u2014 the ability to thoroughly detect and investigate threats that target mobile users so they can confidently use these powerful devices for work,\u201d he said.<\/p>\n

\u201cThis capability further propels our goal of continuing to bridge the gap between what Apple provides and the enterprise requires.\u201d<\/p>\n

ZecOps is a sophisticated solution that enables advanced threat-hunting by capturing and analyzing logs from iOS and Android devices at the operating system layer. This critical data can accelerate incident response by enabling automatic or on-demand mobile cyber investigations.<\/p>\n

The solution has been designed to handle the vast amount of data held in iOS logs to identify potential zero-day or single- or zero-click attacks. According to\u00a0Jamf, ZecOps \u201cdoes the heavy lifting for SOC teams, saving months of work per investigation.\u201d To achieve this it automatically builds a suspicious event timeline and compromise to help show how and when devices are hit.<\/p>\n

The idea that tech could have access to the logs on your device may make some users uncomfortable, but the companies stress that the log collection the system does is confined to low-level system and diagnostics data. It does not include personal data such as photos, videos, text messages and call logs.<\/p>\n

\u201cWe founded ZecOps to catch hidden 0-click and 1-click attacks,\u201d said Zuk Avraham, co-founder and CEO at ZecOps.\u00a0\u201cBy combining with Jamf, we can offer our customers truly powerful mobile threat intelligence and threat hunting capabilities that will keep up with the evolving threat landscape without compromising the user experience.\u201d<\/p>\n

This is just the latest in what now promises to be a run of interesting items involving Apple in the enterprise this fall, as we head toward the Apple Mac and iPad event\/press release announcements<\/a> next month. (At the moment, the speculation is there may be no Apple event.)<\/p>\n

Jamf last week confirmed Jamf Pro support for virtual Macs in AWS<\/a>. It\u00a0opens the doors to JNUC 2022<\/a> in San Diego tomorrow.<\/p>\n

Please follow me on\u00a0Twitter<\/a>, or join me in the\u00a0AppleHolic\u2019s bar & grill<\/a>\u00a0and\u00a0Apple Discussions<\/a>\u00a0groups on MeWe.<\/em><\/p>\n

http:\/\/www.computerworld.com\/category\/security\/index.rss<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

<\/p>\n

\n
\n

The Apple-in-the-enterprise story continues to unfold, this week with Jamf’s announced plans to acquire mobile threat detection and response company\u00a0ZecOps<\/a>.<\/p>\n

Already consumer-simple, Jamf becomes government secure<\/strong><\/h2>\n

Jamf will likely reveal more about the motivations behind the deal at its JNUC<\/a> event for Apple admins, which begins tomorrow. The purchase is the latest move by the Apple-focused enterprise MDM provider to supplement device management with an increasingly effective set of tools to bolster device security.<\/p>\n

To read this article in full, please click here<\/a><\/p>\n<\/section>\n<\/article>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[11062,10643],"tags":[2211,10403,10554,12555,714,24580],"class_list":["post-20188","post","type-post","status-publish","format-standard","hentry","category-computerworld","category-independent","tag-apple","tag-macos","tag-mobile","tag-mobile-device-management","tag-security","tag-small-and-medium-business"],"_links":{"self":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/20188","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=20188"}],"version-history":[{"count":0,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/20188\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=20188"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=20188"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=20188"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}