Apple @ Work is an exclusive presentation from MosyleApple’s only unified platform. Mosyle is the only solution that integrates into a single professional-grade platform all the solutions necessary to automatically and seamlessly deploy, manage and protect Apple devices at work. More than 45,000 organizations trust Mosyle to prepare millions of Apple devices to work effortlessly and at an affordable cost. Request your EXTENDED TEST today and understand why Mosyle is everything you need to work with Apple.
If you spend enough time managing Apple devices in a business environment, you’ll start to notice patterns in how security incidents occur. It’s rarely an Ocean’s 11-style movie stunt. Instead, it’s usually a user delaying an iOS update for three months or an employee connecting to an open Wi-Fi network at a hotel or coffee shop. Jamf recently launched its Security 360: Annual Mobile Trends Reportand the data paints a very clear picture of the vulnerabilities IT departments currently face. Even in the age of AI, what’s old is new again
About Apple@Work: Bradley Chambers managed an enterprise IT network from 2009 to 2021. Through his experience deploying and managing firewalls, switches, a mobile device management system, enterprise-grade Wi-Fi, thousands of Macs, and thousands of iPads, Bradley will highlight the ways Apple IT managers deploy Apple devices, build networks to support them, train users, stories from the trenches of IT management, and ways Apple could improve its products for IT departments.
The problem of updating the operating system
As IT administrators, we constantly think about, push, or insist on updates. The report highlights exactly why this is a huge responsibility. According to the data, 53% of organizations have at least one device with a critically outdated operating system. That means more than half of the companies surveyed have highly exploitable, unpatched vulnerabilities in their employees’ back pockets.
In 2025, we saw critical vulnerabilities such as CVE-2025-31200, where processing an audio stream from a maliciously crafted media file could lead to code execution. The user doesn’t even have to touch a link; Your device simply processes the audio message to preview, memory is corrupted and the device is compromised. If you do not apply operating system updates through your device management platform, you are leaving the door open to these advanced persistent threats.
The challenge is that employees are trying to work while constantly receiving updates, which is good for information security but can be challenging for busy employees.
Jailbreaks and alternative markets
Apple’s walled garden approach to the App Store, since its launch, has been a huge benefit to IT security. However, as the ecosystem changes, new risks arise. The report found that 1 in 850 work devices were jailbroken. When a device is jailbroken, it bypasses Apple’s security restrictions, creating a backdoor that attackers can use to access your system.
2% of organizations had devices using alternative app marketplaces. While advanced users may love the flexibility of downloading, it is a nightmare from a corporate data perspective. Alternative stores are not subject to the same rigorous security and privacy requirements as the official App Store, greatly increasing the risk of malware entering your environment. Plain and simple: In my opinion, the App Store works for business.
The network is the new perimeter
Even with the world’s strictest device configurations, your data is still at risk the moment it leaves your corporate environment. The report notes that 18% of organizations have users connecting to risky access points. Connecting to an unsecured public Wi-Fi network exposes users to Adversary in the Middle attacks, in which hackers can intercept data in transit or steal session cookies.
In addition to network infrastructure risks, standard web risks remain incredibly high. A surprising 25% of organizations had a user fall victim to a phishing link. Generative AI has made it easier than ever for attackers to create convincing phishing messages that perfectly mimic services like Microsoft, Apple, and major financial institutions.
9to5Mac’s opinion
The most important takeaway from this data is that IT administrators cannot trust end users to make the right security decisions. Users will connect to the airport and hotel Wi-Fi. They will click on convincing phishing links. They will ignore the software update message as long as macOS allows them
This reinforces the reality that strong security and device management tools are a core security control, not just a tool to push configuration profiles. Enforce quick security updates, using tools like Queue scale and Move to govern who can touch your dataand leveraging endpoint security to monitor device health are the only ways to proactively defend against a mobile threat landscape that becomes more challenging every quarter.
Read the full report to learn more.
Apple @ Work is an exclusive presentation from MosyleApple’s only unified platform. Mosyle is the only solution that integrates into a single professional-grade platform all the solutions necessary to automatically and seamlessly deploy, manage and protect Apple devices at work. More than 45,000 organizations trust Mosyle to prepare millions of Apple devices to work effortlessly and at an affordable cost. Request your EXTENDED TEST today and understand why Mosyle is everything you need to work with Apple.
FTC: We use automatic affiliate links that generate income. Further.
