INSUBCONTINENT EXCLUSIVE:
An obscure flaw in Apple Device Enrollment Program (DEP) may make it possible for determined hackers to access enterprise networks, though
the solution is quite straightforward.Serial number spoofing
Duo Security researchers say they&ve figured out how to enroll a rogue device
onto an enterprise mobile device management (MDM) system if the business has failed to enable authentication on devices enrolled on the
system.To make this work, attackers need to get hold of the valid serial number for an Apple device that is registered to Apple Device
Enrollment Program (DEP) but not yet set up on the company MDM server, they said.
