Researchers Find ‘Authentication Weakness’ in Apple’s Device Enrollment Program

Researchers from Duo Security have discovered a vulnerability (it calls it an ‘authentication weakness’) in Apple’s Device Enrollment Program (DEP). The flaw was reported to Apple in May 2018. It is not considered to be a major flaw, but could potentially have serious consequences. SecurityWeek has asked Apple if it has or plans to patch or fix the issue.