SUBSCRIBE
Tech Journal Now
  • Home
  • News
  • AI
  • Reviews
  • Guides
  • Best Buy
  • Software
  • Games
  • More Articles
Reading: Apple needs to fix admin authentication in ABM – Computerworld
Share
Tech Journal NowTech Journal Now
Font ResizerAa
  • News
  • Reviews
  • Guides
  • AI
  • Best Buy
  • Games
  • Software
Search
  • Home
  • News
  • AI
  • Reviews
  • Guides
  • Best Buy
  • Software
  • Games
  • More Articles
Have an existing account? Sign In
Follow US
© Foxiz News Network. Ruby Design Company. All Rights Reserved.
Tech Journal Now > Software > Apple needs to fix admin authentication in ABM – Computerworld
Software

Apple needs to fix admin authentication in ABM – Computerworld

News Room
Last updated: May 11, 2026 3:41 pm
News Room
Share
3 Min Read
SHARE

What are the implications?

What this means in practice is that when admins engage with the authentication process, they need to do so using non-federated Apple Account sign-in with Apple’s two‑factor authentication (typically via a trusted device or trusted phone number using SMS/voice). That’s weird; it means the key accounts that manage protection for sometimes thousands of devices are still only protected by a six-digit SMS code sent to a specified phone number. We know that SMS authentication is risky, with three well-known attack paths:

  • SIM swapping, where an assailant contacts your cellular company posing as you and convinces them to transfer your phone number to a SIM in their control. Once that takes place, all your SMS codes go to them.
  • Phishing, such as a fake login page that acts normally but intercepts your SMS code once you enter it, capturing and immediately using it to attack your actual account.
  • Interception, in which sophisticated, usually nation-state-adjacent attackers exploit the known vulnerabilities of SMS to intercept messages in transit.

While it is true most small and mid-size businesses probably don’t need to worry about that third attack possibility, and the second can be mitigated against by being careful never to use a link provided in an email to access key accounts, the first exploit sits within the reach of determined attackers.

A hole in the bucket

The consequences of a successful attack can be serious. Equipped with a compromised ABM account, an attacker could reassign enrolled devices to an MDM server they control, wipe devices, or push malicious apps/profiles or configurations at your devices. Those outcomes are, shall we say, sub-optimal.

I’m certain Apple has thought about this. It has, after all, introduced a range of security protections for all its devices, including managed devices. But in this case, it’s left things a little exposed. That weakness is made more critical because Apple’s system permits just a small number of administrators for each ABM setup, regardless of company size. 

Read the full article here

You Might Also Like

10 Android Circle to Search superpowers you probably never noticed – Computerworld

All major AI models violate EU regulations — study – Computerworld

Police take down VPN service (this time with a good reason) – Computerworld

Microsoft May security patch fails for some due to boot partition size glitch – Computerworld

A guide to the updates – Computerworld

Share This Article
Facebook Twitter Email Print
Leave a comment Leave a comment

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

- Advertisement -
Ad image

Trending Stories

AI

Microsoft betting that enterprise AI needs engineers, not bigger sales teams – Computerworld

July 7, 2026
Games

CD Projekt Red thanks 6000 Edgerunners 2 advance viewers for not spoiling the show in stunning display of opsec: ‘Thank you so much for keeping your promise properly’

July 6, 2026
News

Filing shows Amazon cut 57 tech jobs in Washington state in recent weeks – GeekWire

July 6, 2026
Software

No, we’re not living in a simulation – Computerworld

July 6, 2026
News

Seattle’s Cascade PBS spins out Local Public, a tech platform that builds streaming apps for stations – GeekWire

July 6, 2026
Games

Elder Scrolls Online developer left reeling by Xbox layoffs—with teams gutted, senior talent gone, and roadmaps ‘shifting’ as a result

July 6, 2026

Always Stay Up to Date

Subscribe to our newsletter to get our newest articles instantly!

Follow US on Social Media

Facebook Youtube Steam Twitch Unity

2024 © Prices.com LLC. All Rights Reserved.

Tech Journal Now

Quick Links

  • Privacy Policy
  • Terms of use
  • For Advertisers
  • Contact
Welcome Back!

Sign in to your account

Username or Email Address
Password

Lost your password?