Jamf launches Beacon threat-hunting service

The threat environment is intense so you can anticipate a wave of exploits, successful attacks, and protection services to hit the ramp over the coming weeks. Jamf has hit things running with its new premium threat hunting service, Beacon.
Your own in-house threat intelligence team
Beacon extends the capabilities and expertise of Jamf Threat Labs directly into customer environments. It is a new premium threat hunting service that aims to provide dedicated, proactive detection and analysis of Mac threats.
It hits a market in which Mac deployment continues to accelerate. As a result, Apple’s systems have become prime targets for sophisticated threat actors. The problem is that some security teams don’t have the resources they need to combat these threats.
What they say
“Enterprise Mac adoption has grown at a rapid pace, and threat actors have taken notice,” said Jaron Bradley, Director of Threat Labs at Jamf.
“Beacon extends Apple-focused threat hunting directly to customers, helping them strengthen security operations and better understand activity across their Mac environments.”
What does Beacon do?
There are three core pillars to this offer (from the Jamf press release):
- Apple-focused threat hunting for macOS environments: Organizations gain access to dedicated macOS threat hunters with deep knowledge of Apple’s security frameworks, threat actor techniques and macOS-specific attack vectors. Combined with Jamf telemetry, the service delivers threat hunting and reporting tailored specifically for Apple environments.
- Deep intelligence powered by Apple-native telemetry:Â Beacon by Jamf Threat Labs leverages Jamf’s Mac telemetry, built on Apple’s Endpoint Security API. This telemetry gives Jamf Threat Labs unprecedented visibility to hunt for Apple-specific attack techniques, anomalous activity and suspicious behaviors across Mac environments. Security teams receive prioritized investigations and reporting that help reduce attacker dwell time and improve response to threats impacting macOS devices.
- Actionable guidance while maintaining operational control:Â When a threat is uncovered, Jamf Threat Labs will deliver a comprehensive investigation report complete with actionable remediation recommendations, while internal IT and security teams retain complete ownership and operational control over all containment and policy decisions.
Available as an add-on service for Jamf for Mac and Jamf for Mac Hi-Ed customers through a professional services engagement.
Please join me on social media at BlueSky, LinkedIn, or Mastodon, and do subscribe my daily human-curated Apple news headline summary on Substack.
