Apple @ Work: AI driven phishing scams show why identity security must be a priority for Apple fleets

Apple @ Work is exclusively brought to you by Mosyle, the only Apple Unified Platform. Mosyle is the only solution that integrates in a single professional-grade platform all the solutions necessary to seamlessly and automatically deploy, manage & protect Apple devices at work. Over 45,000 organizations trust Mosyle to make millions of Apple devices work-ready with no effort and at an affordable cost. Request your EXTENDED TRIAL today and understand why Mosyle is everything you need to work with Apple. Starting around 2012, I told anyone who would listen that identity was the key problem for IT. I’ve been proven right, and companies have built great solutions in the years since. That does not mean it is a completely solved problem, though. Cisco Duo’s 2025 State of Identity Security report highlights that the risks are growing faster than many IT teams are prepared to handle. AI-driven phishing, identity spoofing, and internal leaks are forcing companies to rethink authentication and access. What was once an afterthought in infrastructure planning now must be treated as a core security function from the beginning, especially for Apple fleets. Some of my favorite gear Abode Home Security System Abode is the best home security system and includes compatibility with HomeKit. About Apple @ Work: Bradley Chambers managed an enterprise IT network from 2009 to 2021. Through his experience deploying and managing firewalls, switches, a device management system, enterprise grade Wi-Fi, 1000s of Macs, and 1000s of iPads, Bradley will highlight ways in which Apple IT managers deploy Apple devices, build networks to support them, train users, stories from the trenches of IT management, and ways Apple could improve its products for IT departments. Confidence gaps Only 33% of IT leaders in Cisco Duo’s survey said they are confident their identity provider can prevent identity-based attacks. Complexity is part of the problem, and 94% of those survey believe it undermines their security posture. Fragmentation across multiple systems only adds to the challenge as companies expand. M&A contributes here over time as well as companies end up with tool sprawl, etc. Phishing and MFA challenges Everyone agrees that multi-factor authentication technology is a core requirement, but adoption is still not as widespread across all apps and services. 87% of those surveyed say phishing-resistant MFA is important to their security posture, but most have not deployed it at scale. Less than 20% have rolled out FIDO2 tokens. Cost, complexity, and legacy system compatibility continue to make this a slow progress, leaving gaps that attackers can exploit. Passwordless (passkey) access remains the goal, but it is not yet the reality for most companies. In my opinion, Passwordless will be an absolute critical piece in the future. AI is a major threat AI-driven phishing is now seen as one of the top identity threats for IT teams, with 44% of leaders naming it alongside insider misuse and software supply chain risks. The rise of AI in attack techniques is forcing IT teams to accelerate efforts to dal with it. What once might have been a slow rollout of phishing-resistant authentication is now a race to keep pace with evolving threats. Some of the AI videos I’ve seen are incredibly lifelife, and it’s going to cause a problem with remote teams. Some of my favorite gear eufyCam 2C Upgrade your home security with wireless cameras that includes HomeKit compatibility. Financial stakes and record investments More than 51% of organizations in the survey said they have suffered direct financial losses from identity-related breaches. When credentials are stolen or identity systems are compromised, the damage shows up in downtime, loss of customer trust, and compliance issues. The survey also says that 82% of CFOs are increasing their investments in identity security this year. Leaders are also rethinking their vendor strategies. Tool sprawl has become a problem on both visibility and operations, and nearly 80% of organizations are exploring vendor consolidation as a way to cut through the noise and limit security breaches. 9to5Mac’s take Plain and simple: this will continue to be a problem until passkey authentication is the default across all solutions, hardware, and software. Touch ID and Face ID should also always be available, even after a restart. Apple should rework the secure enclave in future hardware revisions to make it possible. We are quickly entering a world where you will struggle to understand whether something digital is real. The work the FIDO Alliance is doing here is some of the most important work happening in cybersecurity. Some of my favorite gear Aqara Smart Lock U50 Upgrade your doors with Apple Home Key and the Aqara U50. Click here to read the report. Apple @ Work is exclusively brought to you by Mosyle, the only Apple Unified Platform. Mosyle is the only solution that integrates in a single professional-grade platform all the solutions necessary to seamlessly and automatically deploy, manage & protect Apple devices at work. Over 45,000 organizations trust Mosyle to make millions of Apple devices work-ready with no effort and at an affordable cost. Request your EXTENDED TRIAL today and understand why Mosyle is everything you need to work with Apple.