Friday Notebook, July 26: Citrix concludes breach investigation; Workspace ONE Windows 10 momentum

Also: FIDO on iPhones; MobileIron zero sign-on; passwords vs. PINS; workspace portal apps; more on IGEL growth; Cylance can get tricked; and more.

This is our weekly log of desktop virtualization, enterprise mobility, and end user computing news.

Our blog posts

Kyle: How does FIDO work on non-certified devices (Apple devices)? No Apple device is currently certified, but is it still possible for users to enjoy the security benefits of FIDO?

Jack: A look at MobileIron’s zero sign-on and passwordless authentication plans. MobileIron’s “zero sign-on” tech uses phones to authenticate when accessing SaaS apps from unmanaged devices.

Kyle: What’s the difference between a password and a PIN? A question I’ve always had but was too afraid to ask when I first learned about passwordless experiences.

Jack: Digital workspace portals are getting all the attention in EUC, but they’re not the only way to work. There are lots of other ways for users to do their job—everything doesn’t have to be wrapped up in a single app.

Industry news

Citrix has concluded the investigation into their data breach, which came to light in March. As previously noted, the culprit was password spraying, and the attackers primarily accessed business documents from a network driver, though some individual drives and email accounts may have been accessed, as well. Citrix reiterated that the security of Citrix products and customers was never threatened.

VMware announced that Workspace ONE customers deployed over a million Windows 10 devices in the first half of 2019. Taking significant market share from SCCM is going to be a long journey, but this is a nice milestone for them.

Last week, IGEL highlighted their North American growth; this week, they’re highlighting European growth for the first half of 2019. Software revenue is up 175%, and endpoint units (software and hardware) are up 57%. Globally, revenue for the first half of the year is up 47% YOY. We know they’ve been very active and aggressive for the last few years, and clearly it’s paying off.

Office Online is now just going to be “Office.” (Via Mary Jo Foley.) This is going to be totally confusing. I remember all the times we used to explain that going to Office 365 didn’t mean you were giving up the native Windows clients.

Other reads and notes

Here’s Bas van Kaam on what it costs him to occasionally use a WVD environment for a month.

Researchers found a way to trick Cylance. I think we all knew this would happen someday, but either way, it’s interesting and highlights issues in machine learning. Related: Notes on AI Bias.

Apple is issuing updates for iOS 9 and 10 (i.e., iPhone 4s and 5-era devices) to keep GPS working.

Another malicious extension shows why we need to deal with these better. For more, take a look at Kyle’s pieces on risky extensions, how Google deals with them, and Duo’s tool for checking them.

Remote browser isolation seems to be popping up everywhere. Menlo Security just got a huge funding round (we have one of our contributors working on an article), MobileIron plans to integrate it in Access, and now, I just learned that Bitdefender is entering the space, using Citrix. (Via VMBlog.)

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.