[lloeki]

Scenario 1: corp buys into Apple's protection, gets rid of (most) third party software

Scenario 2: corp keeps third party software, which bangs its head against Apple's protection which prevents such god processes to access information, thus corp disables Apple's protection and keeps using third party software.

[derefr]

Scenario 3: Apple treats third-party software that "bangs its head against Apple's protection" as malware, force-disabling it; mandates all third-party software to be rewritten to just use control APIs for Apple's internal protection mechanism.

(Compare/contrast: Hypervisor.framework)

[kaba0]

For what it's worth, most if not all "anti-virus" software that corps buy are borderline malware themselves and doesn't worth shit. The reason they even exist is that corps get to tick "security" on some bullshit bureaucracy check list. One reason I prefer Macs on company laptops is that corp doesn't get to modify it all that much.

[olyjohn]

Yeah the compliance is the same whether you use Windows, Mac or Linux. We run Microsoft Defender on our Macs. And have JAMF, and Beyond Trust. All the same shitty corp management software works on Macs now because they are popular in the workplace. If your corp isn't managing them the same as Windows, they either have no third party security audits, or your company is not compliant.

[AaronM]

PCI compliance mandates virus/ malware protection, so many orgs that handle card data are forced to run it.

[GeekyBear]

We've certainly seen Windows Defender delete software like uTorrent without any input from the system Administrator.

[greggsy]

This is exactly how Symantec operated under Windows 7, which required you to disable a key security feature at boot. Not sure if it’s still a thing.

[ec109685]

Apple’s software will never support DLP and other invasive Corp spyware so I think there will always unfortunately be a need for the latter.

E.g. https://www.bloomberg.com/news/features/2023-05-11/the-plot-...

[g42gregory]

Hopefully Scenario 3a: corp realized that they don't really need Apple OS and move to Linux instead.