Headlines 24.nl verzamelt actueel nieuws via de rss feeds van online kranten. Op elk moment geven wij al het laatste nieuws overzichtelijk weer.

Tevens kunt u inloggen om uw eigen nieuws pagina samen te stellen en zo alleen het nieuws te zien dat u interesseert.


 
 

Jamf The exploit isn’t what gives attackers away

05/07 08:15 - Jamf The exploit isn’t what gives attackers away
Jamf this week unveiled Beacon, a threat-hunting service that aims to provide dedicated, proactive detection and analysis of Mac threats. The new security tool relies on Jamf’s Mac telemetry, which equips Jamf Threat Labs with the kind of deep visibility it needs to hunt for Apple-specific attacks, anomalous activity and suspicious behaviors.  Security is always a major issue, but the threat environment is only becoming more complex, with AI adding a whole new set of dangers to fear. The unique nature of the Mac creates a paradox: while more employees want to use Macs, organizations sometimes lack the relevant internal expertise to support and secure them. Even with the correct endpoint security tools and policies in place, blue teaming can be under-resourced. As a result, organizations struggle to start, scale, repeat, and measure effective Mac threat-hunting programs. Even the smallest business needs security protection at quite a high level — but who can afford a whole threat detection and remediation team? With that in mind, Jaron Bradley, director of Jamf Threat Labs, offered more details about the company’s newly-introduced security service and broader security issues affecting Mac fleets in the business world. Jaron Bradley, director of Jamf Threat Labs. Jamf AI is boosting attackers, what is the current environment, and why is awareness becoming more essential? “AI is primarily changing the speed at which attackers operate. We’re seeing this across the board: malicious websites go live faster, malware gets built faster, and malware adapts faster once it’s detected in the wild. That said, AI isn’t only benefiting attackers; defenders have gained just as many new capabilities from it. The bigger question is who can use it better. “AI has effectively lowered the skill floor, so someone who would have once been dismissed as a ‘script kiddie’ can now build functional malware or ransomware with far less expertise than before. That’s why awareness matters more now: the pool of capable attackers is growing even faster.” Is perimeter security a realistic ambition anymore? “This may depend on the company and its office requirements, but many would argue that security shifted from the perimeter to the endpoint long ago. That doesn’t mean perimeter security is dead; it simply means it’s one layer in a broader defense strategy. Many security analysts have found detection and analysis of novel threats to be more achievable at the endpoint level.” If AI identifies a vulnerability and moves to exploit it, how likely is Beacon to identify the attack taking place? “AI has certainly changed the threat landscape, especially around vulnerability discovery and exploit development. The good news for expert threat hunting is that this doesn’t have a large effect on our ability to detect attacks. “Zero-days have always existed, and while AI raises the stakes by accelerating how quickly they’re found and weaponized, it’s usually the activity attackers perform after using an exploit, not the exploit itself, that gives them away. No defense is ever truly complete, so the real differentiator has always been how fast and how well you notice when something’s wrong. That’s exactly where Beacon is built to add value: expert knowledge of what this malicious activity looks like in the Apple environment.” Q: What sort of threats are you seeing right now? “Infostealer malware remains the single biggest threat to macOS right now. These stealers trick users into running them through convincing fake websites and social engineering, then exfiltrate as many credentials and secrets as possible for the attacker to use, sell, or trade on the dark web.  “Apple regularly ships new protections, and attackers just as regularly adapt their social engineering to stay ahead of them. Techniques like ClickFix, where users are tricked into pasting and running malicious commands themselves, have become especially effective because they bypass many protections entirely by getting the user to do the work. Beyond that, supply chain attacks are growing at an alarming rate, with attackers compromising developer libraries that get pulled into internal or production projects, quietly introducing backdoors without the creator’s knowledge.” Q: What about the manufacturing sector? Is there any excuse to use legacy kit at all in an AI threat age? “AI generated threats won’t necessarily be different than traditional ones, but they will stress the seams of traditional security programs that will need to have improved visibility at scale and be able to work at a new kind of speed and agility from start to finish.” Q: Should IT delay security releases at all anymore? “It’s difficult to find a one-size-fits-all answer here. Delaying a release makes sense when the risk of shipping outweighs the cost of waiting, and that calculation looks very different for a hospital system than it does for a consumer app. The more meaningful shift in recent years isn’t about delaying more or less; it’s about catching problems earlier, so delaying becomes the exception rather than the standard. Both rushing and waiting carry real risks, so the decision should weigh multiple factors, particularly when security updates are on the line.” Please join me on social media at BlueSky,  LinkedIn, or Mastodon, and do subscribe my daily human-curated Apple news headline summary on Substack. ...


 
 

Meer over computer

05/07 13:30  schrijven voor miljoenen fans

05/07 13:30 De WK-fanwalks als masterclass cultuurvorming

05/07 13:30 Iedereen knikt, toch verandert er de valkuil van schijninstemming

05/07 13:30 Van gestopte start-up naar tweede kans, mét AI

05/07 13:30 Vertrouwen is de snelste route naar B2B-groei [5 stappen]

05/07 13:30 De meest opvallende WK-inhakers van 2026

05/07 13:30 Zo voorkom je AI-hallucinaties met een slimme controlelaag

05/07 13:30 Zo maak je influencer marketing meetbaar [5 stappen]

05/07 13:30 10 redenen waarom je marketing nu écht niet meer zonder video kan

05/07 13:30 5 misverstanden over AI die ondernemers tijd kosten

05/07 13:30 Van Asch tot dit maakt sociale bewijskracht zo krachtig

05/07 13:30 B1-teksten invoeren? Begin met overtuigen, niet met schrijven

05/07 13:30 Ongevraagd klanten bellen met een commercieel aanbod mag sinds 1 juli niet meer

05/07 13:30 Hoe houd je grip op content als AI steeds meer taken overneemt?

05/07 13:30 Niet de luidste stem dialogisch leiderschap voor inclusieve samenwerking

05/07 13:30 Zo activeer je medewerkers op LinkedIn (ook als ze zeggen geen tijd te hebben)

05/07 13:30 Meer interactie in je trainingen? Zo pak je dat aan [5 leerpunten]

05/07 13:30 Waarom bezoekers afhaken terwijl ze wél geïnteresseerd zijn

05/07 13:30 Van online winkel naar AI- de transformatie van de webshop

05/07 13:30 Meta, Google en Wall Street zetten in op voorspellingsmarkten. Moet jij ook opletten?

05/07 13:30 Deze zomer pilot mobiele politiebureau in Gooi en Vechtstreek

05/07 13:30 MOBOTIX behaalt certificering voor thermische branddetectie

05/07 13:30 Nieuwe manager het CCV kiest voor impact

05/07 13:30 10 jaar geëist voor aanslag met vuurwerkbom

05/07 13:30 Securitas behaalt NIS2 Supply Chain-certificaat

05/07 13:30 KNVB en beveiligingsbranche krijgen steun voor motie evenementenbeveiliging

05/07 13:30 In Rien van der Linden

05/07 13:30 Zware criminelen krijgen strafkorting door trage rechtsgang

05/07 13:30 Chiu Man inspecteur-generaal Inspectie Justitie en Veiligheid

05/07 13:30 Digitalisering toegangsbeheer verlaagt kosten en versterkt beveiliging

05/07 13:30 De iPhone Air 2 komt mogelijk in het voorjaar van 2027 uit

05/07 13:30 Maak met je smartphone kiekjes die op Game Boy Camera-foto's lijken

05/07 13:30 Jim Carrey keert mogelijk terug als de Grinch

05/07 13:30 Toch afzien van je online aankoop? Webshops moeten hier nu een knop voor hebben

05/07 13:30 Lezen of luisteren op waarom je niet hóeft te kiezen tussen e-books en audioboeken

05/07 13:30 Je barbecue is pas compleet met deze 8 onmisbare BBQ-accessoires

05/07 13:30 Amazon weigert om deze film rondom OpenAI-baas uit te brengen

05/07 13:30 Review Philips 5000 airfryer single basket – Grote mand, handige rails en fijne stoomfunctie

05/07 13:30 Google Agenda krijgt eindelijk veel meer kleurtjes

05/07 13:30 Nothing brengt dit jaar geen nieuw model in budgettelefoonmerk CMF uit

05/07 13:30 Inzicht in de volg je internetsnelheid

05/07 13:30 Taylor Swift voor de verandering eens niet de populairste artiest op Apple Music

05/07 13:30 Nog eens drie nieuwe acteurs voor derde Fallout-seizoen bevestigd

05/07 13:30 AI in herschrijf, vat samen en verbeter

05/07 13:30 Netflix mag Sesamstraat verfilmen

05/07 13:30 Review ASUS Zenbook A16 - Lichte laptop is zware aanslag op je portemonnee

05/07 13:30 NASA werkt aan snellere Marsrover

05/07 13:30 Microsoft heeft eindelijk een antwoord op de MacBook Air

05/07 13:30 Nothing schrapte CMF Phone 3 Pro, maar komt wel met Nothing Phone 4b

05/07 13:30 Aardman toont meer van Pokémon The Misadventures of Sirfetch’d and Pichu

 

login Member login

Emailadres

Wachtwoord