Pepijn BruienneOct 10, 2023

Prompted by @philofishal noting #SocialEngineering readiness for #macOSSonoma here: https://infosec.exchange/@philofishal/111211016895022468 this is an opportunistic reminder that the #MDM profile payload "com.apple.systempolicy.managed" can prevent your users from right-clicking a #MaliciousPayload as instructed by an attacker. That's the kind of quick, low-hanging fruit kind of #mitigation I like.

πŸ“š https://developer.apple.com/documentation/devicemanagement/systempolicymanaged
πŸ“„ https://github.com/apple/device-management/blob/release/mdm/profiles/com.apple.systempolicy.managed.yaml

Phil Stokes (@[email protected])

Attached: 3 images Social engineers being ready for #macOS #Sonoma πŸ˜…πŸŽ£. faf7692c44fcf4fae055b9ba57ed327e85ef6d5e #malware #security Safariupdate (Obfuscated #poseidon)

Infosec Exchange
ITSEC NewsDec 5, 2019
Machine-raiding Python libraries squashed by community - Python developers have once again fallen victim to malicious software libraries lurking in their f... more: https://nakedsecurity.sophos.com/2019/12/05/machine-raiding-python-libraries-squashed-by-community/ #pythonpackageindex #maliciouspayload #python3-dateutil #securitythreats #malware #python
Machine-raiding Python libraries squashed by community

Naked Security