Apple @ Work is brought to you exclusively by Mosylethe only Apple Unified Platform. Mosyle is the only solution that integrates all the solutions you need to seamlessly and automatically deploy, manage and protect Apple devices in the workplace into a single professional-grade platform. More than 45,000 organizations trust Mosyle to get millions of Apple devices up and running effortlessly and affordably. Request your EXTENDED TRIAL PERIOD Today and find out why Mosyle is everything you need to work with Apple.
If you spend enough time managing Apple devices in a corporate environment, you start to see patterns of how security incidents happen. This is a rare cinematic Ocean’s 11 style hack. Instead, it’s usually a user who delays an iOS update by three months, or a worker who connects to a public Wi-Fi network at a hotel or cafe. Jamf recently posted Security 360: Annual Mobile Trends Reportand the data paint a very clear picture of the vulnerabilities that IT departments are currently facing. Even in the age of artificial intelligence, what’s old is new again
About Apple @ Work: Bradley Chambers managed the enterprise IT network from 2009 to 2021. With experience implementing and managing firewalls, switches, mobile device management systems, enterprise-grade Wi-Fi, and 1,000s of Macs and 1,000s of iPads, Bradley will highlight how Apple’s IT managers support them and how users support Apple devices. Ways for IT management and Apple’s IT departments to improve their products.
OS update problem
As IT admins, we’re constantly thinking, pushing, or whining about updates. The report highlights why this is a huge responsibility. According to data, 53% of organizations have at least one device with a critically outdated operating system. That means more than half of the companies surveyed have unpatched, highly exploitable vulnerabilities sitting in their employees’ back pockets.
In 2025, we saw critical vulnerabilities CVE-2025-31200, where processing an audio stream from a maliciously crafted media file can result in code execution. The user does not even need to touch the link; their device is just processing the audio message for preview, the memory is corrupted and the security of the device is compromised. If you’re not applying OS updates through your device management platform, you’re leaving the door open to these advanced persistent threats.
The challenge is that employees are trying to work while receiving constant updates, which is good for infosec, but can be a problem for busy employees.
Jailbreaks and alternative markets
Apple’s walled-garden approach to the App Store has been a huge boon for IT security since its launch. However, as the ecosystem changes, new risks emerge. The report found that one in 850 business devices is jailbroken. When a device is jailbroken, it bypasses Apple’s security restrictions, creating a backdoor that attackers can use to access your system.
2% of organizations had devices using alternative software markets. While power users love the flexibility of sideloading, it’s a nightmare from an enterprise data perspective. Alternative stores are not subject to the same strict security and privacy requirements as the official App Store, and greatly increase the risk of malware entering your environment. Plain and simple: I think the App Store works for the enterprise.
The network is the new perimeter
Even with the world’s most stringent device configurations, your data is still at risk the moment it leaves your corporate environment. The report notes that 18% of organizations have users connecting to risky hotspots. Connecting to an unsecured public Wi-Fi network exposes users to Man-in-the-Middle attacks, where hackers can intercept data in transit or steal session cookies.
Along with network infrastructure risks, standard web risks remain incredibly high. In a staggering 25% of organizations, a user has fallen victim to a phishing link. Generative AI has made it easier than ever for attackers to craft convincing phishing messages that perfectly mimic services from the likes of Microsoft, Apple and major financial institutions.
Adoption of 9to5Mac
The biggest takeaway from this data is that IT administrators can’t trust end users to make the right security decisions. Users will connect to airport and hotel Wi-Fi networks. They will click on convincing phishing links. They will ignore the software update request as long as macOS allows them to
This reinforces the reality that robust device management and security tools are key security controls, not just tools to push configuration profiles. Apply rapid security updates, using tools such as Tail scale and Make a move to control who can access your dataand using endpoint security to monitor device health is the only way to proactively defend against a mobile threat landscape that grows more complex every quarter.
read it full report to learn more.
Apple @ Work is brought to you exclusively by Mosylethe only Apple Unified Platform. Mosyle is the only solution that integrates all the solutions you need to seamlessly and automatically deploy, manage and protect Apple devices in the workplace into a single professional-grade platform. More than 45,000 organizations trust Mosyle to get millions of Apple devices up and running effortlessly and affordably. Request your EXTENDED TRIAL PERIOD Today and find out why Mosyle is everything you need to work with Apple.
FTC: We use automatic affiliate links that generate income. More.
