9to5Mac proposes reducing the maximum update deferral window to 45–30 days, arguing a 30-day cadence better balances testing with stronger security protections.

Apple has added a native Terminal security warning in macOS Sequoia and Tahoe 26.4 to disrupt ClickFix, flagging harmful pasted commands from untrusted sources.

Apple’s traditional 90-day deferral window for macOS updates, controlled by IT admins, is increasingly viewed as a liability as threats evolve rapidly, particularly in AI-enabled environments.

A Netskope Threat Labs report details the macOS ClickFix campaign that tricks users into pasting a malicious script into Terminal, enabling password theft, macOS Keychain compromise, and live session cookies that could enable MFA bypass.

The piece argues for changes in update deferral practices and enterprise management workflows in light of this threat landscape.

Apple @ Work frames the discussion around IT deployment, security, and enterprise Apple ecosystem improvements, with sponsorship from Mosyle.

Even if the 90-day option stays, IT teams should tighten policies to shorten deferral windows and ensure critical mitigations reach fleets promptly.

The campaign demonstrates how social engineering and OS-level prompts can defeat security measures, highlighting the risk of long update deferral windows for enterprises.