It is ridiculous that many companies are still providing security patches every 3 months for maximum 2-3 years.

The expected change is about how long the actual updating process takes, not for how long updates will be provided. The article is not that long. You could have read it.