Jamf buys ZecOps to convey high-end safety to Apple enterprise
ZecOps protects world-leading enterprises, governments, and people; Jamf has acquired it to assist safe the enterprise.
Peter Lomas
The Apple-in-the-enterprise story continues to unfold, this week with Jamf’s introduced plans to amass cellular risk detection and response firm ZecOps.
Already consumer-simple, Jamf turns into authorities safe
Jamf will probably reveal extra in regards to the motivations behind the deal at its JNUC occasion for Apple admins, which begins tomorrow. The buy is the newest transfer by the Apple-focused enterprise MDM supplier to complement machine administration with an more and more efficient set of instruments to bolster machine safety.
From right here, it appears inevitable the addition of ZecOps tech will give managed Apple units a lot larger consciousness across the state of endpoint safety, whereas additionally widening Jamf’s personal market.
ZecOps — declared one of many world’s most revolutionary firms in 2021— is used to guard world-leading enterprises, governments, and people, together with Bloomberg and the BBC. It famously recognized a nasty iOS vulnerability in 2020.
“ZecOps is the only available tool that provides the capability to extract, deliver, and analyze mobile device logs for signs of compromise or malicious activity,” stated one buyer, described solely as “Department of State, a G7 government.”
Securing the enterprise
That’s very a lot in tune with the occasions, after all. The pandemic has confirmed the necessity to safe endpoints as criminals started concentrating on customers to undermine company safety programs. ZecOps ought to lengthen Jamf’s present cellular safety capabilities by including superior risk detection and incident response.
Ideally, units ought to be capable to act and react when a acknowledged exploit is made in opposition to them. This appears to be the path of journey, on condition that ZecOps offers iOS customers with the identical stage of risk protection Mac customers already get utilizing Jamf Protect.
It provides iOS units some perception into detecting the sorts of subtle cellular threats that Apple’s Lockdown mode goals to forestall. Not solely that, however a person can run each Lockdown mode and ZecOps software program on the similar time. (You have to put in the profiles for ZecOps/Jamf Protect and/or any VPN service you employ on the machine earlier than enabling Lockdown Mode.)
Mobile units now account for 59% of worldwide web site site visitors, and based on the 2022 Verizon Mobile Security Index, near half (45%) of firms declare to have suffered some compromise within the final 12 months.
The addition of the software program means Jamf will help speed up cellular safety investigations from weeks to minutes, leveraging recognized indicators of compromise at-scale and figuring out subtle 0- or 1-click assaults on a deeper scale.
Threat detection for the remainder of us
Jamf CEO Dean Hager Jamf defined why this issues: “We believe ZecOps has built a differentiated solution that meets a very important need for many organizations — the ability to thoroughly detect and investigate threats that target mobile users so they can confidently use these powerful devices for work,” he stated.
“This capability further propels our goal of continuing to bridge the gap between what Apple provides and the enterprise requires.”
What Jamf features
ZecOps is a classy answer that allows superior threat-hunting by capturing and analyzing logs from iOS and Android units on the working system layer. This crucial knowledge can speed up incident response by enabling automated or on-demand cellular cyber investigations.
The answer has been designed to deal with the huge quantity of knowledge held in iOS logs to determine potential zero-day or single- or zero-click assaults. According to Jamf, ZecOps “does the heavy lifting for SOC teams, saving months of work per investigation.” To obtain this it routinely builds a suspicious occasion timeline and compromise to assist present how and when units are hit.
The concept that tech might have entry to the logs in your machine could make some customers uncomfortable, however the firms stress that the log assortment the system does is confined to low-level system and diagnostics knowledge. It doesn’t embody private knowledge similar to photographs, movies, textual content messages and name logs.
“We founded ZecOps to catch hidden 0-click and 1-click attacks,” stated Zuk Avraham, co-founder and CEO at ZecOps. “By combining with Jamf, we can offer our customers truly powerful mobile threat intelligence and threat hunting capabilities that will keep up with the evolving threat landscape without compromising the user experience.”
Enterprise information for Apple IT
This is simply the newest in what now guarantees to be a run of attention-grabbing gadgets involving Apple within the enterprise this fall, as we head towards the Apple Mac and iPad occasion/press launch bulletins subsequent month. (At the second, the hypothesis is there could also be no Apple occasion.)
Jamf final week confirmed Jamf Pro help for digital Macs in AWS. It opens the doorways to JNUC 2022 in San Diego tomorrow.
Please comply with me on Twitter, or be part of me within the AppleHolic’s bar & grill and Apple Discussions teams on MeWe.