"The background nature of these security patches is good for most of us most of the time, though some users and certainly some MacOps professionals will want to disable the feature. There are, after all, many enterprises that need to test and approve software patches before they can be installed across their device fleets. Admins need to ensure their MDM systems can accurately parse data on which updates have been installed across their fleets;"
"They will want to be certain all devices have been updated, if company policy is to permit such updates. It's worth noting that Apple also patched around 50 vulnerabilities within the same software update that introduced Background Security Improvements. This in itself should be food for thought for Apple users and Apple admins, as it shows the scale of the threat environment and reinforces the need for swift and timely security updates/"
Background automatic security patches run unobtrusively to improve device protection while some users and MacOps professionals may choose to disable them. Many enterprises require testing and approval before deploying patches across device fleets. Administrators must ensure MDM systems can accurately parse and report which updates have been installed across all devices, and Declarative Device Management should provide up-to-date telemetry for IT. Administrators need to verify device compliance with company update policies. Apple included patches for roughly fifty vulnerabilities in the same update that added Background Security Improvements, demonstrating the scale of threats and the importance of swift, timely updates.
Read at Computerworld
Unable to calculate read time
Collection
[
|
...
]