Your individuals are your weakness
The information tells its own story. OC explains: Employees account for 57% of all security incidents and 45% of those incidents come when employees bypass or ignore security policies by, for instance, using unapproved tools.
Attackers are actively trying to find and exploiting those sorts of policy workarounds, looking for weaknesses in commonly used, but unapproved, tools. Users really should educate themselves.
While firms can put some mitigations in place using device management and policy controls to constrain app use and downloads across their endpoints, Apple can be working to keep systems secure with a deal with the Terminal app.
Terminal’s early warning system
On this case, it’ll introduce latest malware warnings and protections to assist prevent people from using Terminal to override system security to put in malware-laden scripts. That’s the attack vector currently getting used within the ClickFix series of attacks, which use fake macOS utilities to trick Mac users into doing just that.