惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

宝玉的分享
宝玉的分享
酷 壳 – CoolShell
酷 壳 – CoolShell
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
S
Security @ Cisco Blogs
小众软件
小众软件
D
Docker
博客园_首页
A
About on SuperTechFans
P
Privacy International News Feed
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
A
Arctic Wolf
Spread Privacy
Spread Privacy
有赞技术团队
有赞技术团队
T
Tailwind CSS Blog
Latest news
Latest news
WordPress大学
WordPress大学
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
T
The Exploit Database - CXSecurity.com
C
Cybersecurity and Infrastructure Security Agency CISA
大猫的无限游戏
大猫的无限游戏
cs.CV updates on arXiv.org
cs.CV updates on arXiv.org
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
K
Kaspersky official blog
V2EX - 技术
V2EX - 技术
SecWiki News
SecWiki News
U
Unit 42
GbyAI
GbyAI
H
Hackread – Cybersecurity News, Data Breaches, AI and More
L
LINUX DO - 热门话题
S
Security Affairs
Y
Y Combinator Blog
aimingoo的专栏
aimingoo的专栏
Blog — PlanetScale
Blog — PlanetScale
MongoDB | Blog
MongoDB | Blog
博客园 - 【当耐特】
The GitHub Blog
The GitHub Blog
T
Tenable Blog
W
WeLiveSecurity
Cloudbric
Cloudbric
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
G
Google Developers Blog
Application and Cybersecurity Blog
Application and Cybersecurity Blog
N
Netflix TechBlog - Medium
F
Full Disclosure
N
News and Events Feed by Topic
D
DataBreaches.Net
P
Proofpoint News Feed
B
Blog RSS Feed
B
Blog
cs.CL updates on arXiv.org
cs.CL updates on arXiv.org

9to5Mac

Apple permanently closing three US stores, here’s when [Updated] Apple Arcade just added 4 new ad-free games with these titles now available At least for now, Liquid Glass in Pixelmator Pro remains a Creator Studio exclusive Apple @ Work: How to add an existing Mac to Apple Business Manager without wiping it Hands-on: SkyDex turns your daily weather check into a Pokémon adventure App Store fight continues as Apple and Epic clash over court-ordered stay OpenAI says to update Mac apps including ChatGPT and Codex as security precaution Apple TV in-person ‘experience’ coming later this month in LA New iPhone Fold leaks cover ‘Ultra’ name, launch timing, more Report: Apple tops global smartphone market for first time in Q1 as overall shipments drop Car Keys in Apple Wallet coming soon to major new vehicle brand Apple previews AI, accessibility, and AirPods Pro 3 research for CHI 2026 April 10, 2026 – Apple Store closures, more VSCO report explores how photographers perceive, adopt, and actually use AI XChat, X’s standalone messaging app, launching soon with these features Apple TV has three shows with finales this week, here’s what’s ending iOS 26.4 adds setting to let you change new Liquid Glass effect Hands-on: Satechi’s 3-in-1 Qi2 charger brings 25W of power with a clean Apple aesthetic [Video] iOS 27 adding new ‘Siri’ app to Home Screen: Here are the rumored features Deals: All 15-inch M5 MacBook Air models $150 off, Series 11 $99 off, Nomad leather iPhone 17 cases, more Amazon launches ‘Prime Video Ultra’ with new features, higher price How the Mac changed the way I clear mental clutter YouTube Premium is getting a US price hike of up to $4/month Tribit StormBox Micro 3: My favorite travel speaker just got better and cheaper FBI used iPhone notification data to retrieve deleted Signal messages Adobe’s low-processing camera app expands support to select iPads and the iPhone 17e New Apple TV movie starring Keanu Reeves now available to stream Apple collector showcases 50 years of Mac startup sounds [Video] WhatsApp is bringing Status updates to the top of the Chats tab iOS 26’s Messages app got a big upgrade for an essential feature Survival horror game Cronos: The New Dawn coming natively to Apple Silicon Macs Report: Apple saw 9% growth in Mac shipments during Q1 2026 OpenAI introduces $100/month Pro plan aimed at Codex users, here’s what it includes Instagram now lets you edit your comments after posting Apple updates Creator Studio apps including Logic Pro and Pixelmator Pro, more Leaker gives iPhone 18 Pro updates on two design changes Researchers detail how a prompt injection attack bypassed Apple Intelligence protections DIY MacBook Neo upgrade can boost the SSD to 1TB using iPhone parts iPhone Fold visualized, HomeKit Adaptive Temperature, MacBook Neo shortages - 9to5Mac Ex-Apple engineers create an AI button that looks like an iPod Shuffle – but can’t explain why iPhone Fold unboxing video is a fake, not the real thing Apple releases macOS 26.4.1 software update, here’s what’s new Apple TV just added two exciting new series to future lineup Anthropic scales up with enterprise features for Claude Cowork and Managed Agents April 9, 2026 – iOS 26.4.1 released, more Deals: 1TB M5 MacBook Air $150 off, Apple Thunderbolt 5 cables up to 48% off, Magic Keyboard Amazon low, more Spotify’s newest feature lets you focus on audio without distractions Europe’s largest Apple museum opens to the public in the Netherlands iOS 26.4.1 now available for iPhone users, here’s what’s fixed Discounted M5 MacBook Pro hits Apple refurb store with key storage distinction [U] Report: iPhones accounted for half of the top 10 best-selling smartphones in Q4 2025 iPhone 18 Pro’s rumored camera feature could prove that less is more So long, Llama: Meta unveils Muse Spark AI with Contemplating mode Apple seeks internal data from Samsung in South Korea in ongoing antitrust case Stolen Device Protection now enabled by default for enterprise devices in iOS 26.4.1 You can now buy official repair parts for MacBook Neo, iPhone 17e, Studio Display XDR, more iOS 26.4.1 fixes iPhone bug that stopped iCloud data from syncing, including Apple Passwords iPadOS 26.4 adds convenient new feature for iPad power users ChatGPT just added its first streaming video app, here’s what it can do Overcast launches podcast transcripts in new app update for iPhone Day One journaling app introduces ‘Gold’ plan with AI summaries and Daily Chat Amazon says these 13 Kindle devices won’t be able to get new books soon CarPlay in iOS 26 has my top new Apple Music feature, here’s how to use it Astropad unveils Workbench for Mac: ‘Remote desktop made for the AI era’ Shrinking creator explains finale ending, confirms season 4 cast and time jump Deals: 24GB M5 MacBook Air all-time low $150 off, 16-inch M5 Pro MacBook $199 off, black Apple USB-C cables, more Car Keys in Wallet recently launched for two major vehicle brands, with more soon April 8, 2026 – New CarPlay apps, iPhone Fold reports iPhones on space missions are as valuable as they are fun Insta360 jumps on the rear iPhone screen trend with its new Snap monitor Apple TV unveils return of acclaimed London crime thriller Apple very cautious about iPhone Ultra sales, as Samsung wins major concession FBI says cyber fraud cost Americans $21B last year – here’s what you need to know Apple gets bottom ranking for repairability of iPhones and MacBooks – with one exception Apple Arcade could use an ‘always allow’ feature that’s separate from App Store Apple TV: Six-part Vietnam docuseries picks up 3 News & Documentary Emmy nominations This clever Shortcut lets you download latest Artemis II images directly from NASA [U: updated shortcut] Vision Pro is about to get Steam Link app for gaming, download beta here New video reveals iPhone 18 Pro Max, iPhone Fold dummy models WhatsApp’s improved CarPlay experience is now available to all iPhone users 9to5Mac Overtime 066: Every time I breathe there's a new Claude update - 9to5Mac iOS 27 release date: Here’s when the next major iPhone update is coming Deals: 16GB M5 MacBook Air $150 off, Apple Watch Ultra 3 $99 off, 24GB M5 MacBook Pro, Magic Mouse, more watchOS 26.4 fixes a major Apple Watch Workout app complaint Mint Mobile launches $45/month bundle for wireless and home internet 9to5Mac Daily: April 7, 2026 – Apple’s MacBook Neo quandary - 9to5Mac Apple study details an AI-powered tool that helps developers build interface prototypes Aqara releases new Thermostat Hub W200 with Apple Adaptive Temperature support M5 MacBook Air is no longer Apple’s entry point so who is it for now? [Video] iOS 26 added my favorite new iPhone ringtone, listen here Studio Display XDR medical imaging feature gets FDA clearance [U: Now available] The best CarPlay tips and tricks Anthropic unveils powerful Mythos AI model, working with Apple in cybersecurity initiative iPhone Fold is ‘on track’ to launch this September, per Mark Gurman Google Chrome rolling out vertical tabs and fullscreen reading mode MacBook Neo facing 3-week delays at Apple, here’s how to buy one sooner Dark Matter season 2 gets release date on Apple TV Apple faces supply chain problem as MacBook Neo demand exceeds expectations ‘iPhone Ultra’ is the likely name of Apple’s foldable, says leaker Spotify Prompted Playlists now work for podcasts as well as music
Apple @ Work: Why the ClickFix campaign means it is time to kill the 90 day update deferral
Bradley C · 2026-05-23 · via 9to5Mac

Apple @ Work is exclusively brought to you by Mosyle, the only Apple Unified Platform. Mosyle is the only solution that integrates in a single professional grade platform all the solutions necessary to seamlessly and automatically deploy, manage, and protect Apple devices at work. Over 45,000 organizations trust Mosyle to make millions of Apple devices work ready with no effort and at an affordable cost. Request your EXTENDED TRIAL today and understand why Mosyle is everything you need to work with Apple.

Over the past few weeks, the Mac admins I talk with have been talking about a report from Netskope Threat Labs regarding a new macOS ClickFix campaign. The campaign is a brilliant (and scary) piece of social engineering, and it highlights exactly why the traditional 90-day software update deferral window needs to be retired, either by Apple or by IT.

About Apple @ Work: Bradley Chambers managed an enterprise IT network from 2009 to 2021. Through his experience deploying and managing firewalls, switches, a mobile device management system, enterprise-grade Wi-Fi, 1000s of Macs, and 1000s of iPads, Bradley will highlight ways in which Apple IT managers deploy Apple devices, build networks to support them, train users, stories from the trenches of IT management, and ways Apple could improve its products for IT departments.

The ClickFix threat

ClickFix is a tactic where attackers trick users into copying and pasting a malicious script directly into their Terminal app. They achieve this using fake CAPTCHA screens or fake browser update alerts. Once the user pastes and runs the script, it deploys an AppleScript dialog box that looks exactly like a native macOS system prompt.

The prompt asks for the user’s password and loops infinitely until the user provides it. There is no close button. Once the password is captured, the malware steals the entire macOS Keychain database, along with live session cookies from browsers such as Safari and Chrome. Stealing live session cookies is the ultimate prize because it allows attackers to bypass multi-factor authentication completely.

Why deferring updates is a liability

Apple is already fighting back against this specific attack type. In macOS Sequoia and macOS Tahoe 26.4, Apple introduced a native Terminal security warning. This feature specifically disrupts ClickFix attacks by alerting users when they attempt to paste harmful commands from an untrusted source into Terminal.

This brings me to my main point. Historically, Apple has allowed IT administrators to defer macOS updates for up to 90 days using their device management platform. For years, this was considered an IT best practice. It gave teams time to test internal apps, verify compatibility, and ensure a smooth rollout across the fleet.

However, the threat landscape in the age of AI is moving too fast for a three-month delay. If your organization is deferring updates for a maximum of 90 days, your users are missing out on critical OS level mitigations like the new Terminal paste warning. For three entire months, your employees are vulnerable to social engineering attacks that the operating system could easily block if it were simply up to date.

9to5Mac’s take

It might be time for Apple to rethink the management framework and formally reduce the maximum software update deferral window from 90 days to 45-30 days. The reality is that if a software vendor has not updated their enterprise app to support a new version of macOS within 30 days of release, you have a vendor problem, not an Apple problem.

Even if Apple keeps the 90-day option available indefinitely, IT teams need to manually tighten their internal policies. Enforcing a 30-day maximum deferral window strikes the perfect balance between testing application compatibility and protecting corporate data from emerging threats. You simply cannot afford to leave your fleet exposed for a quarter of the year.

Apple @ Work is exclusively brought to you by Mosyle, the only Apple Unified Platform. Mosyle is the only solution that integrates in a single professional grade platform all the solutions necessary to seamlessly and automatically deploy, manage, and protect Apple devices at work. Over 45,000 organizations trust Mosyle to make millions of Apple devices work ready with no effort and at an affordable cost. Request your EXTENDED TRIAL today and understand why Mosyle is everything you need to work with Apple.

Add 9to5Mac as a preferred source on Google Add 9to5Mac as a preferred source on Google

FTC: We use income earning auto affiliate links. More.