Apple Device Management
Endpoint Detection & Response
macOS Device Management
iOS Device Management
Kai
Liftoff
Prism
Migration Agent
Auto Apps
Passport
Compliance
Assignment Maps
Managed OS
Integrations
Resources Hub
Kandji Blog
Customer Stories
Mac Admins Community
Security Details
MDM Comparison Guide
About Apple Device Management
Customer Support
Product Updates
Customer Login
Kandji Status
Register a Deal
Become a Partner
Technology Partners
Partner Portal
About Kandji
News & Press
Careers
Contact
Why Kandji?
Device Management
Advanced MDM solution for Apple devices
Extensive threat detection and response for Mac
Manage Mac with advanced automation
Take full control over iPhone, iPad, and Apple TV
Device insights with AI
User onboarding
Pre-built device reports
MDM migration for Mac
App management
Synced passwords for Mac
Security control templates
Configuration management
Automated OS updates
Connect to your tools
Discover the power of Kandji with a personalized demo and 21-day trial.
Uncovering Apple Vulnerabilities: diskarbitrationd and storagekitd Audit Part 2
Kandji's Threat Research team recently performed an audit on the macOS diskarbitrationd and storagekitd system daemons, uncovering several vulnerabilities. Our team reported all of them to Apple through their responsible disclosure program, and as these are fixed now, we are releasing the details in this blog series - this is part two. In part one we covered a vulnerability which impacted the diskarbitrationd system daemon and allowed attacks to either escape the sandbox or escalate our privileges through user file systems. In this second part, we will review a vulnerability (CVE-2024-40855) which allows someone to escape the sandbox and also fully bypass TCC by being able to mount over the user's TCC directory. This was possible by performing a directory traversal attack on diskarbitrationd.
Why You Need an MDM Solution that’s Built Specifically for Apple
Introduction The last decade has seen tremendous growth of Apple devices in the enterprise. It started with the popularity of the iPhone but then grew to include the much wider adoption of the Mac as well. As organizations began to deploy and manage more and more Apple devices, they also began to adopt a suite of software tools collectively referred to as mobile device management (MDM.) These tools allow organizations to wirelessly and securely manage their fleets of devices and to send configuration profiles, content, and commands to them.
Manage Homebrew at Scale with New Workbrew Integration
Managing developer tools across a fleet of Mac devices presents unique challenges for IT teams. While tools like Homebrew are essential for developers, ensuring consistent deployment and maintaining visibility across an organization's devices has traditionally been complex. Today, we're excited to announce a new integration with Workbrew, which just announced its 1.0 launch. This new integration will streamline Homebrew deployment and management for Kandji and Workbrew customers.
We chose Kandji for their security solution to efficiently manage a fleet of Apple MacBooks. We were able to quickly and significantly increase our security posture with minimal resources.
Martin G.
Staff Dev-ops Engineer, Wisely
This tool was clearly designed from a Mac admin's point of view.
Nicholas Mercurio
Manager, IT & Security Operations, Fluent
We're saving time managing our Apple fleet with Kandji's built-in automations.
Wilson Ho
Director of IT, Turo
Visit the Knowledge Base to access help documentation
Latest feature releases and product updates
Existing customers: Sign in to access Kandji
Stay updated on Kandji system status
reduction in Mac-related support tickets
hours a month saved on routine maintenance
Learn more about Kandji, the modern MDM for Apple
Read the latest news in Apple enterprise management
Browse open job opportunities at Kandji
Get in touch with the Kandji team
Register a partner opportunity with Kandji for collaboration.
Apply to join the Kandji Partner Program
Check out Kandji’s integrations & API
Log in to access Kandji Partner Academy
Kandji's focus on automation sets it apart from any other MDM solution on the market.