Zombieloadattack and force updating MacOS – part 2

Patching your MacOS to the latest version is only a partition solution, it prevents JavaScript exploits via safari. It does not resolve the issues for other browsers for now. When researching I ran into this article that explains a bit more on how this works: https://www.tugraz.at/en/tu-graz/services/news-stories/tu-graz-news/singleview/article/nach-meltdown-und-spectre-tu-graz-forscher-entdecken-neue-sicherheitsluecken0/ Store-to-Leak Forwarding Store-to-leak forwarding also reads pre-loaded data by … Continue reading Zombieloadattack and force updating MacOS – part 2

macOS security – Secure Kernel Extension Loading (SKEL)

Some background first As we get ready to approve kernel extension for our Apple fleet, here is some background on how things evolved. Kernel extension (KEXT) - MacOS kernel combines the features of a microkernel (load the minimum to run the OS separately from other services) and a monolithic kernel (everything needed for the OS, … Continue reading macOS security – Secure Kernel Extension Loading (SKEL)

Fully loaded Mac – in the past

We covered the features Apple is giving us to manage our macs in the previous post. However, some of those features are not yet available in Israel. They will show up here eventually, possible with Apple Business Manager release in the next few months. In the meantime let discuss how we used to deploy new … Continue reading Fully loaded Mac – in the past