Over 45,000 organizations currently rely on the Mosyle platform to manage millions of Apple devices efficiently and affordably. This platform integrates advanced security solutions tailored for Apple, including automated Hardening & Compliance and AI-powered Zero Trust, aimed at ensuring enterprise safety and readiness.
Recent findings from Jamf Threat Labs highlighted a new variant of the MacSync Stealer malware, which poses a serious challenge to macOS security. This malware was distributed through a malicious application that was both code-signed with a legitimate Developer ID and notarized by Apple, thereby circumventing traditional security measures such as Gatekeeper.
Historically, Apple’s security model has effectively protected users by requiring apps outside the Mac App Store to undergo cryptographic signing and notarization. However, the discovery of compromised Developer ID certificates being used to distribute malware indicates a significant risk, as these malicious applications can appear legitimate during initial installation. The true threats often activate later by connecting to remote servers to download additional harmful payloads.