Jamf’s latest Security 360 report, built on telemetry from 1.4 million macOS devices in 90 countries, shows trojan malware now accounts for half of all Mac detections. The share jumped from roughly 17 percent in 2024 to 50 percent in 2025, making trojans the dominant threat vector for enterprises managing Apple hardware. Enterprises using Jamf MDM see these metrics reflected in breach attempts, urging rule updates.

The report pins Atomic Stealer as the primary culprit, responsible for 77 percent of trojan activity and 78 percent of infostealer incidents. Its dual role blurs traditional malware categories, as many infostealers now embed trojan backdoors for persistence. This trend forces security teams to adapt quickly.

Meanwhile, adware and other potentially unwanted applications have collapsed to under 5 percent of detections, signaling a shift toward data‑theft motives. With 41 percent of Jamf‑managed Macs running outdated OS versions and 73 percent harboring vulnerable apps, organizations must prioritize timely patching and robust endpoint protection to curb the trojan surge. Neglecting these gaps leaves corporate data exposed to ransomware and espionage today.