Remote access for your macOS is convenient because it allows a user to access your laptop using your administrator login and password. This is a convenient tool in certain situations where you might not be able to physically access your computer. But leaving this feature on could be negligent.
The security of your laptop is determined by reducing the “surface area of attack” by malicious actors. The remote access option being left on all the time just leaves you and your company more vulnerable to a potential attack.
Security researchers actually discovered a vulnerability in Apple computers for enterprise companies that allowed them to remotely hack a brand new Mac the first time it connected to Wi-Fi. Once bugs like this get identified developers can issue patches, which still requires a user to ensure those security updates get installed or they’ve turned on auto-updates for security patches.
1. Click the Apple icon > System Preferences, then click the Sharing icon.
2. Uncheck the boxes next to Remote Login and Remote Management.
While remote access can be a convenient tool, having it enabled can increase your risk exposure. Because of that, companies should implement information security policies to give employees guidance on when they can use it.
Does your company have a policy about remote access?
Hardening your Mac is a great first step into developing your security foundation. The next step is hardening your organization with our Startup Security Playbook. It provides tips and answers to common questions about information security programs.