(Air)dropping by Unannounced: Analyzing remote Mac access with AXIOM Cyber
In response to a global pandemic, we saw a global workforce decentralize and work from home. It’s clear now that work from home is here to stay in some form, even if it’s a hybrid office/work from home format.
While that’s convenient to the employee, it does raise legitimate issues when it comes to security, incident response, remote data collection, and remote forensic analysis.
Furthermore, the convenience of remote access to endpoints helps to foster a work from home approach, but also elevates the need for forensic examiners to both capture these artifacts and know where to uncover them.
This discussion will review a case study where an employee alleged an employer was spying through remote access on their Mac, and how AXIOM Cyber helped to collect and analyze that evidence.