Jamf emits mystery security fix for Pro macOS, iOS wrangler, keeps admins in dark by censoring chatter MacOS network admins are being advised to update their copies of the Jamf Pro management software following the disclosure of a critical security flaw. The Jamf Pro 10.15.1 update includes among its fixes a patch for a security flaw that, depending upon the version being used, could allow for file deletions or remote code …
An increase in the quality of the stock photos clearly not matched by an increase in the quality of the commentary.
Meanwhile, not a Jamf user but it's a shame when a vendor's ham-fisted attempts to keep a lid on damaging flaws and "keep it in the [customer] family" and away from the miscreants turns into a Streisand situation.
Soooo... the vulnerability was discovered, then patched almost immediately - then Jamf allowed customer about 72 hours to upgrade their server before telling the world there was a way to hack into anyones server not upgraded to a patched build. This was a responsible and appropriate move. Jamf released the vulnerability data to customers yesterday. It's common practice to allow people ample time to upgrade prior to releasing the how-to
"Premium and Custom customers can contact their Customer Success representative to schedule an upgrade."
Maybe I'm getting old and cynical, but when I see a company refer to their customer service folks as "Customer Success representatives", I know somebody's getting a gratuitous wanking under the table somewhere...
But like I said, I'm old and cynical.
The Register 
Biting the hand that feeds IT
Copyright. All rights reserved © 1998–2024
