Sidebar Sidebar
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

Virus/Malware program recommendations? [MERGED]

I am confused about the software to use. Please help me

  • Bitdefender Total Security

    Votes: 1 8.3%

  • Avast Premium Security

    Votes: 0 0.0%

  • Norton 360 Deluxe

    Votes: 1 8.3%

  • Malwarebytes

    Votes: 5 41.7%

  • Surfshark

    Votes: 0 0.0%

  • Total AV

    Votes: 0 0.0%

  • Other

    Votes: 5 41.7%
  • Total voters
    12
  • Poll closed .
960design said:
To be fair, it exists in Apple Silicon as well. Any predictive processing a chip does can be viewed/hijacked. The setup is pretty complex on Apple Silicon; I only know of a lab case where it was done, it really just matters how determined the attacker is... and how well funded.
Click to expand...
yes, that's precisely what @mmkerc pointed out, with which I agreed, and then coat-tailed with the Intel comment.
960design said:
I do not believe this is 'wild' yet as it requires actual programmers ( not script kiddies ) to implement....
Click to expand...
"In the Wild" absolutely encompasses programmers. So-called "script kiddies" merely represent one form of commoditization.

It's fair to say that laboratory proofs-of-concept would not be considered "In the Wild"; although, seriously, what human researcher can't be bought?
 
Last edited:
ipaqrat said:
Generally, both Apple's and Microsoft's build in anti-malware (antivirus, system integrity) measures are fine... In both cases, so long as you don't defeat them in fits of frustration when an app you want to try turns out to be poorly designed, can't play by the rules.

Another important aspect is not to have your normal daily user account as admin. Apple has a setting to make you re-authenticate to perform certain admin actions, but the nature of malware is to skirt around those triggers. Better to just run as normal user. Another layer of the security onion.

Ironically, some anti-malware apps/solutions force you to defeat certain build in layers of security, so they can fully run, making those anti-malware apps THEMSELVES attack vectors. As an analogy, consider... hypothetically... a password vault app itself getting hacked. But, seriously, what are the odds that could never really happen? Other than 💯%

All that said, I occasionally run Malwarebytes manually for a quick scans, sanity checks, particularly on removable media that I carry and connect to client systems.
Click to expand...

Unfortunately what is coming up are applications that insist on installing themselves under Admin so they can install their background programs that will be receptors for future attack vectors.

Looking at you Zoom (and MS Office for some time now). They added an Admin install requirement and now want to install some background program but it's not required to make the application work. I can verify that the Zoom doesn't actually need to do anything that requires Admin.

Office does it because it only supports /Application installs and needs to add its auto-update and license verification daemons. I liked it better when all apps on the Mac were drag and drop to your favorite folder.

None of this is to contradict your recommendation to seperate one's daily user account from admin. That is still good practice and just wish more applications didn't fight it.
 
bzgnyc2 said:
Unfortunately what is coming up are applications that insist on installing themselves under Admin so they can install their background programs that will be receptors for future attack vectors... None of this is to contradict your recommendation to seperate one's daily user account from admin. That is still good practice and just wish more applications didn't fight it.
Click to expand...
Welll... yeah. Most software should be installed as admin. If you trust the vendor, then, by all means, log in as admin (or provide the admin creds) to do the install. After install, you return to your regular user account. This is how it's supposed to work.

If you encounter an app that runs only if you (the regular user) have admin permissions, that is bad, bad, bad. Quit, Uninstall, Clean up after, and if you paid for it, get your ******* money back.

"Their background programs" aren't necessarily attack vectors, merely potential attack vectors - same as software in the foreground.

Here's the thing: There is no such thing as risk avoidance; there is only risk management.

You evaluate software features, methods, reputation, security history, price... and decide what is worth the risk. In an enterprise environment, typically, a team of engineers makes the decision for you. For example:
  • Free Zoom was banned at the TLA (three letter agency) where I worked years ago. I designed a specific scanning process (using Tanium) to hunt it down and delete it, even if the user installed a "Runtime User Mode" version and changed its name. I heard Zoom improved their posture later.
  • On the other hand, costly Microsoft Office is as solid a citizen as one can reasonably expect. The apps are arguably best in class. They have security precautions in place. Microsoft patches regularly. I install/patch MS Office by providing admin permissions when needed, but use the software in my normal user account.
  • Meanwhile, I find Adobe kinda dodgy. The apps are arguably best in class, but I believe Adobe tends to ignore/deny security issues, and slow to remediate. I install/patch by providing admin permissions when needed, but use the software in my normal user account.
  • Apple's apps are useful because they're laterally integrated across device platforms, for better or worse. Apple does security patching, but they feel stonewally and clumsy. Again, I provide admin creds when necessary because my agency deploys and manages Apple Mobiles, and my family settled on them as well.
Every app and web site, from every vendor, should be considered a risk to manage. If you're not worried, you're not paying attention. This degree of vigilance can be exhausting and expensive.
 
I'm not too concerned about my own machine, but I am concerned about reputational damage when I pass something on to clients, colleagues, my employer, and friends. Workwise to be compliant with the ISMS, Cyber Security Plus, and ISO27001 Annex A Controls (Information Security) and thus be allowed to use my BYOD devise, I do run a paid for version of Bitdefender Antivirus for Mac.
 
  • Like
Reactions: phrehdd
Whatever you do, don't use crowd strike :p


451765784_960845649062136_7690866082426329527_n.jpg
 
  • Like
  • Haha
Reactions: millerj123, sgtaylor5, diggy33 and 1 other person
I have been bored and exploring anti-virus stuff. If I am reading it right the macosx has its own protection. I mainly use firefox and safari, i connect to the college's browser and the wife has me download student documents. I do banking, facebook and sites interesting to me. Now if I read it right, the xprotect and gateway will block any crap coming in on mail, I use the apple mail app and have had a few questionable emails that I deleted and emptied the trash. Hence searching to see if I really need the anti-virus. I have heard the age old that macs do not get viruses but some of the more ambitious kids have developed trojans, worms, viruses, zero day and I want to be protected as I also do all the finances. I am waiting for the OS update along with the crowd.
 
Macs are not immune, just smaller market share so was less desirable to try in the day. As long as you are connected and go on the web, you are vulnerable. One wrong click and you could be compromised, someone you know gets infected and sends you an email... there is no shortage of threats out there. With any financial info on your computer, you need to take caution and use protection.
 
  • Like
Reactions: cyb3rdud3, KaliYoni and Chuckeee
WeatherWeasel said:
I have been bored and exploring anti-virus stuff. If I am reading it right the macosx has its own protection. I mainly use firefox and safari, i connect to the college's browser and the wife has me download student documents. I do banking, facebook and sites interesting to me. Now if I read it right, the xprotect and gateway will block any crap coming in on mail, I use the apple mail app and have had a few questionable emails that I deleted and emptied the trash. Hence searching to see if I really need the anti-virus. I have heard the age old that macs do not get viruses but some of the more ambitious kids have developed trojans, worms, viruses, zero day and I want to be protected as I also do all the finances. I am waiting for the OS update along with the crowd.
Click to expand...
In general if you only visit legit sites and block ads you are safe enough with macOS built-in protections. If you don’t block ads be very careful of things popping up on your screen unexpectedly.

In reality the vast majority of macOS malware comes in the form of fake apps that request permission to be installed. They spread when people go looking for pirated apps that they can use for “free”.

If you use software downloaded from websites that you haven’t verified belong to the actual companies owning the software then you could be vulnerable.

If you use open source software that hasn’t been notarized by Apple you are also taking a risk. Generally un-notarized software will not run without taking extra steps so if you don’t override it, macOS will protect you.

Be cautious with downloaded software and you don’t need additional anti-virus.
 
RokinAmerica said:
Macs are not immune, just smaller market share so was less desirable to try in the day. As long as you are connected and go on the web, you are vulnerable. One wrong click and you could be compromised, someone you know gets infected and sends you an email... there is no shortage of threats out there. With any financial info on your computer, you need to take caution and use protection.
Click to expand...
what do you use
 
WeatherWeasel said:
I have been bored and exploring anti-virus stuff. If I am reading it right the macosx has its own protection. I mainly use firefox and safari, i connect to the college's browser and the wife has me download student documents. I do banking, facebook and sites interesting to me. Now if I read it right, the xprotect and gateway will block any crap coming in on mail, I use the apple mail app and have had a few questionable emails that I deleted and emptied the trash. Hence searching to see if I really need the anti-virus. I have heard the age old that macs do not get viruses but some of the more ambitious kids have developed trojans, worms, viruses, zero day and I want to be protected as I also do all the finances. I am waiting for the OS update along with the crowd.
Click to expand...
I also don't go to the dodgy site of the internet, never use illegal or unknown origin software. Have a Mac that is updated, yet my antivirus software still finds stuff occasionally.
 
cyb3rdud3 said:
I also don't go to the dodgy site of the internet, never use illegal or unknown origin software. Have a Mac that is updated, yet my antivirus software still finds stuff occasionally.
Click to expand...
I go for the paid version. right now I have Norton360 , How about Avast, Bitdefender or totalAV. I had problems before when there was an update to MACOS and it wouldn't load until I deleted the anti-virus.
 
WeatherWeasel said:
I go for the paid version. right now I have Norton360 , How about Avast, Bitdefender or totalAV. I had problems before when there was an update to MACOS and it wouldn't load until I deleted the anti-virus.
Click to expand...
It was doing its job to protect system files ;)
 
I made the mistake of contacting norton support. first I couldn't understand the person, they were not speaking English well. Second, I wanted them to delete my Norton Safe Mail account and they wanted me to download something so they could gain access to my computer. That,for me, was a red flag. The account is on their site and the person was not happy and said they couldn't do anything for me. One time before I contacted them when I got the unable to add email as someone else loaded it. I asked them to go into the application data base on their end and just delete all email accounts, and they insisted on loading something. So I ended the conversation, did the survey on how bad they were. I guess I will have to wait for the subscription to run out.
 
I have a like new M1 MacBook Pro that I just purchased off eBay. Beautiful machine. I am getting notifications that my operating system in infected with a Trojan Horse virus and that my operating system will be removed. Do Macs need antivirus protection and if so, what is the best one. I have heard good things about Clean My Mac. Any advice pointing me in the right direction is much appreciated.
 
First thing to say is that the messages are a scam, not a virus. These are most likely coming from notifications from a scammy website you granted permission to send notifications.
You don’t generally need anti-virus as Mac does have built in tools, but I’d suggest malwarebytes as a free tool that you can use to scan your Mac on demand to check for problems and reassure yourself you don’t have a problem
 
  • Like
Reactions: AVBeatMan
JonaM said:
First thing to say is that the messages are a scam, not a virus. These are most likely coming from notifications from a scammy website you granted permission to send notifications.
You don’t generally need anti-virus as Mac does have built in tools, but I’d suggest malwarebytes as a free tool that you can use to scan your Mac on demand to check for problems and reassure yourself you don’t have a problem
Click to expand...
Is Malwarebytes already on my machine or do I need to get it from somewhere?
 
MacPauly said:
Is Malwarebytes already on my machine or do I need to get it from somewhere?
Click to expand...
You can download it for free from Malwarebytes.com . There is an option to pay for the enhanced functionality of always on scanning and protection, but the basic underlying detection is the same in the free version, just you have to click on scan rather than letting it do it automatically
 
You must log in or register to reply here.
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.
Top Bottom
Back