Jamf Blog

Posts in the Jamf Threat Labs Category

November 12, 2024 by Jamf Threat Labs

APT Actors Embed Malware within macOS Flutter Applications

Jamf Threat Labs discovered malware samples believed to be tied to the Democratic People's Republic of Korea (DPRK), aka North Korea, that are built using Flutter, which by design provides obfuscation to the malicious code. JTL performs a deep dive into how the malicious code works to help protect users on macOS devices.

October 31, 2024 by Hannah Bien

Jamf After Dark: get to know Jamf Threat Labs

Get an inside look at Jamf Threat Labs in this episode of Jamf After Dark.

October 3, 2024 by Jamf Threat Labs

A Window into Your Photos: Revealing How Sideloaded Apps Can Secretly Monitor Your Images

In the ever-evolving realm of cybersecurity, staying ahead of malicious threats is essential. At Jamf, we are committed to proactively identifying and mitigating risks to iOS devices. Learn how in our latest post.

September 16, 2024 by Jamf Threat Labs

Jamf Threat Labs observes targeted attacks amid FBI Warnings

On September 3, 2024 the Federal Bureau of Investigations (FBI) released a public service announcement set to warn those in the Crypto Industry that the Democratic People's Republic of Korea ("DPRK" aka North Korea) has been targeting individuals by using clever social engineering techniques for the successful delivery of malware.

August 30, 2024 by Jamf Threat Labs

Bypassing the Gate: A closer look into Gatekeeper flaws on macOS

Jamf Threat Labs discovered a Gatekeeper vulnerability in macOS that may lead to the execution of an unsigned and unnotarized application without displaying appropriate security prompts to the user. Read on to learn more about our findings.

August 6, 2024 by Jamf Threat Labs

Maintaining persistence through deception: The threat of fake iOS updates

Jamf Threat Labs explores how bad actors use fake iOS updates to maintain persistence on compromised devices.

May 30, 2024 by Jamf Threat Labs

Phishing for credentials: iOS pop-up deception through sideloaded apps

In this blog, Jamf Threat Labs showcases how malicious actors deceive users. By mimicking authentic Apple pop-up messages in the native iOS style, a false sense of security is created, prompting users to instinctively input their credentials.

April 5, 2024 by Jamf Threat Labs

Infostealers continue to pose threat to macOS users

Jamf Threat Labs dissects ongoing infostealer attacks targeting macOS users. Each with different means of compromising the victim’s Macs but with similar aims: to steal sensitive user data.

Subscribe to the Jamf Blog

Have market trends, Apple updates and Jamf news delivered directly to your inbox.

To learn more about how we collect, use, disclose, transfer, and store your information, please visit our Privacy Policy.