Researchers from Duo Security have discovered a vulnerability (it calls it an ‘authentication weakness’) in Apple’s Device Enrollment Program (DEP). The flaw was reported to Apple in May 2018. It is not considered to be a major flaw, but could potentially have serious consequences. SecurityWeek has asked Apple if it has or plans to patch or fix the issue.
http://feedproxy.google.com/~r/Securityweek/~3/HlJnEsRHsng/researchers-find-authentication-weakness-apples-device-enrollment-program