ACCORDING to Malwarebytes, a new macOS security feature is being rolled out for macOS Tahoe 26.4 to warn users if they paste certain commands into the Terminal that might be harmful. If such a command is pasted, macOS will display a prompt saying “Possible malware, Paste blocked. Your Mac has not been harmed. Scammers often encourage pasting text into Terminal to try and harm your Mac or compromise your privacy.
These instructions are commonly offered via websites, chat agents, apps, files, or a phone call.” The article notes that ClickFix was responsible for more than half of all malware loader activity in 2025, with campaigns continually adding new methods and commands to evade detection. It explains ClickFix as a social engineering technique that prompts users to run commands which download malware, typically an information stealer, and that campaigns broadened from Windows to Mac users.
Rumour has it that Apple deployed this feature to counter such attacks, and the feature will be available as part of macOS Tahoe 26.4, according to Malwarebytes.