This brief post is a collection of links on the matter of sideloading iOS apps, the consequences and how to prevent it. Mostly via BrianMadden.com. https://www.brianmadden.com/opinion/Did-you-know-how-easy-it-is-to-sideload-iOS-apps-to-your-iPhonehttps://techcrunch.com/2019/02/12/apple-porn-gambling-apps/Software pirates use Apple tech to put hacked apps on iPhones >> Between February 2016 and February 2017, 11% of enterprise iOS devices encountered a sideloaded app. > Wandera’s data... Continue Reading →
[iOS vs Android] OS and Application Updates
I frequently get this question from customers and partners: "How can I control Application and OS Updates in iOS and Android". So I'll drop a note here. Update management includes: Configuring the behaviour of OS upgrades (major), patches, public apps (via App/Play Store, VPP) and private apps (via App/Play Store or directly via EMM)Scheduling updates to happen (or... Continue Reading →
Apple iOS Update Management with WorkspaceONE UEM (AirWatch)
This practical entry briefly outlines how to force or defer OS Update for Apple iOS devices (iPhones, iPads). There are two completely opposite use cases for this: Critical 0-day vulnerability - must force push OS Update to patch the devicesBusiness critical apps not tested with the latest iOS update - must delay/disallow update before testing.... Continue Reading →
Securing work contacts while keeping caller ID 03: iOS with Boxer
I had a week of customer meetings, each (literally!) asking the same question: "How can I prevent WhatsApp from grabbing the corporate contacts on my device?" In this series of posts we will explore the options of deploying corporate email/contacts/calendars with the goal of maximal work/personal contact separation, while trying to minimally impair the user... Continue Reading →
Securing work contacts while keeping caller ID 01: Android vs iOS
I had a week of customer meetings, each (literally!) asking the same question: "How can I prevent WhatsApp from grabbing the corporate contacts on my device?" This happens more often than you think – the infamous GetContact collected over 3.5B contacts in just a few months, all of which were officially available for sale! With GDRP... Continue Reading →
iOS Trustjacking protection with EMM
Trustjacking is a new "scary" attack on iOSnew "scary" attack on iOS devices, exploiting user's lack of understanding or what's going on. When plugging into an unknown computer or charger user may choose to "trust" it, which allows the remote device quite a degree of access to iPhone/iPad data. Many don't realize that this trust... Continue Reading →
Arsen Bandurian: Technical Blog 