Contentious Topic - Anti Virus on a Mac

Similar Messages

• Anti-virus on the Mac

  Anti-viruses on the Mac system seem to be a very controversial topic.  In my opinion, every computer should have protection but I'd like to know from other Apple IT Specialists like myself what is your opinion on this?  If you feel we should have protection on our Macs, what is the best program out there?  I've been using Symantec and haven't had any problems with it but I've seen on many threads that many others don't like to use it.

  OS X has got its own security systems, as XProtect and Gatekeeper, that makes your Mac safer, so I think that you don't have to worry about antiviruses that can slow down your computer or damage OS X. See > http://www.thesafemac.com/mmg
  Anyway, if you want an antivirus, you can install ClamXav or Sophos, but they are designed to detect Windows virus more than OS X ones (if there are any)

• Question:  Do I need to run and anti virus program with MAC OSX Lion? Have heard different opinions! If so what would you recommend? Was looking at Sophos. Does anyone have any experience with this? Thanks

  Question:  Do I need to run and anti virus program with MAC OSX Lion? Have heard different opinions! If so what would you recommend? Was looking at Sophos. Does anyone have any experience with this? Thanks

  Do I need to run and anti virus program with MAC OSX Lion? Have heard different opinions!
  You will continue to hear different opinions here, where thoughts range everywhere between "anti-virus software is the evil spawn of Satan" to "anyone not running anti-virus software is a fool."
  Truth is, this is still a very personal decision on a Mac. Depending on circumstances, it is still very easily possible to stay safe without using anti-virus software, but circumstances and personal preferences vary widely. Besides which, anti-virus software cannot even remotely provide you a guarantee of protection!
  To learn how to stay safe (with or without anti-virus software), and how to decide whether to use anti-virus software, see my Mac Malware Guide.

• My bank has offered me Kaspersky Anti-Virus 2011 for Mac for Free, should I bother?

  Thoughts?
  I am a reasonably experienced Mac user, have never had a problem (that I am aware of) with security on my iMac.
  I'm erring towards, what's the point, why bother.
  But I thought I would throw it out there?
  Perhaps another question is, what steps should I ensure that I have done to MAXIMISE the security that is built into OSX?
  I am running 10.6.8
  Thanks,

  Chipstix wrote:
   what steps should I ensure that I have done to MAXIMISE the security that is built into OSX?
  Don't do any online banking with amounts your not comfortable losing.
  Keep the bulk of your funds entirely on your banks electronic systems accessible only in person and transfer as needed to less secure accounts that are on ATM/checking/debit card type accounts.
  It annoys my bank to no end that I come in once every month or two to transfer money and gets some cash, but it puts people to work and I don't get ripped off.
  If you've read the horror stories I have where people's entire online accounts gets transferred to another country with little enforcement or extradition, you would do the same.
  Mac's are a bit more secure than Windows, but it's really just smarter choices playing on Roulete, eventually you play long enough the House takes your money no matter how good your luck or skill is.
  So the smart choice is don't play, or only take to the table what your willing to lose.
  All your doing with installing anti-virus on a Mac is cleaning the Windows files if you got malware on them, it's not doing you a bit of good.
  OS X already has XProtect watching for malicious trojans, and your not a dumb smuck that will install a trojan, so there is currently no need for anti-virus, causes more problems that it solves as Apple changes things all the time, which throws off the anti-virus software and gives errors, false positives or hozes the system, even creates security vulnerabilites!
  There is new malware all the time, operating systems are flawed, especially Lion. It's like Apple is capitalizing on all the free security support of the computer community and just throws a unproven OS X version out there and allows it's user base to be guinne pigs.
  https://threatpost.com/en_us/blogs/apple-ships-mammoth-security-update-101311

• Do I need to have an anti-virus in my mac?

  Do I need to have an anti-virus in my mac?

  1. This comment applies to malicious software ("malware") that's installed unwittingly by the victim of a network attack. It does not apply to software, such as keystroke loggers, that may be installed deliberately by an intruder who has hands-on access to the victim's computer. That threat is in a different category, and there's no easy way to defend against it. If you have reason to suspect that you're the target of such an attack, you need expert help.
  If you find this comment too long or too technical, read only sections 5, 6, and 10.
  OS X now implements three layers of built-in protection specifically against malware, not counting runtime protections such as execute disable, sandboxing, system library randomization, and address space layout randomization that may also guard against other kinds of exploits.
  2. All versions of OS X since 10.6.7 have been able to detect known Mac malware in downloaded files, and to block insecure web plugins. This feature is transparent to the user, but internally Apple calls it "XProtect." The malware recognition database is automatically checked for updates once a day; however, you shouldn't rely on it, because the attackers are always at least a day ahead of the defenders.
  The following caveats apply to XProtect:
  It can be bypassed by some third-party networking software, such as BitTorrent clients and Java applets.
  It only applies to software downloaded from the network. Software installed from a CD or other media is not checked.
  3. Starting with OS X 10.7.5, there has been a second layer of built-in malware protection, designated "Gatekeeper" by Apple. By default, applications and Installer packages downloaded from the network will only run if they're digitally signed by a developer with a certificate issued by Apple. Software certified in this way hasn't necessarily been tested by Apple, but you can be reasonably sure that it hasn't been modified by anyone other than the developer. His identity is known to Apple, so he could be held legally responsible if he distributed malware. That may not mean much if the developer lives in a country with a weak legal system (see below.)
  Gatekeeper doesn't depend on a database of known malware. It has, however, the same limitations as XProtect, and in addition the following:
  It can easily be disabled or overridden by the user.
  A malware attacker could get control of a code-signing certificate under false pretenses, or could simply ignore the consequences of distributing codesigned malware.
  An App Store developer could find a way to bypass Apple's oversight, or the oversight could fail due to human error.
  For the reasons given above, App Store products, and other applications recognized by Gatekeeper as signed, are safer than others, but they can't be considered absolutely safe. "Sandboxed" applications may prompt for access to private data, such as your contacts, or for access to the network. Think before granting that access. OS X security is based on user input. Never click through any request for authorization without thinking.
  4. Starting with OS X 10.8.3, a third layer of protection has been added: a "Malware Removal Tool" (MRT). MRT runs automatically in the background when you update the OS. It checks for, and removes, malware that may have evaded the other protections via a Java exploit (see below.) MRT also runs when you install or update the Apple-supplied Java runtime (but not the Oracle runtime.) Like XProtect, MRT is effective against known threats, but not against unknown ones. It notifies you if it finds malware, but otherwise there's no user interface to MRT.
  5. The built-in security features of OS X reduce the risk of malware attack, but they're not absolute protection. The first and best line of defense is always going to be your own intelligence. With the possible exception of Java exploits, all known malware circulating on the Internet that affects a fully-updated installation of OS X 10.6 or later takes the form of so-called "trojan horses," which can only have an effect if the victim is duped into running them. The threat therefore amounts to a battle of wits between you and the malware attacker. If you're smarter than he thinks you are, you'll win.
  That means, in practice, that you never use software that comes from an untrustworthy source, or that does something inherently untrustworthy. How do you know what is trustworthy?
  Any website that prompts you to install a “codec,” “plug-in,” "player," "extractor," or “certificate” that comes from that same site, or an unknown one, is untrustworthy.
  A web operator who tells you that you have a “virus,” or that anything else is wrong with your computer, or that you have won a prize in a contest you never entered, is trying to commit a crime with you as the victim. (Some reputable websites did legitimately warn visitors who were infected with the "DNSChanger" malware. That exception to this rule no longer applies.)
  Pirated copies or "cracks" of commercial software, no matter where they come from, are unsafe.
  Software of any kind downloaded from a BitTorrent or from a Usenet binary newsgroup is unsafe.
  Software that purports to help you do something that's illegal or that infringes copyright, such as saving streamed audio or video for reuse without permission, is unsafe. All YouTube "downloaders" are in this category, though not all are necessarily harmful.
  Software with a corporate brand, such as Adobe Flash Player, must be downloaded directly from the developer’s website. If it comes from any other source, it's unsafe.
  Even signed applications, no matter what the source, should not be trusted if they do something unexpected, such as asking for permission to access your contacts, your location, or the Internet for no obvious reason.
  6. Java on the Web (not to be confused with JavaScript, to which it's not related, despite the similarity of the names) is a weak point in the security of any system. Java is, among other things, a platform for running complex applications in a web page, on the client. That was always a bad idea, and Java's developers have proven themselves incapable of implementing it without also creating a portal for malware to enter. Past Java exploits are the closest thing there has ever been to a Windows-style virus affecting OS X. Merely loading a page with malicious Java content could be harmful.
  Fortunately, client-side Java on the Web is obsolete and mostly extinct. Only a few outmoded sites still use it. Try to hasten the process of extinction by avoiding those sites, if you have a choice. Forget about playing games or other non-essential uses of Java.
  Java is not included in OS X 10.7 and later. Discrete Java installers are distributed by Apple and by Oracle (the developer of Java.) Don't use either one unless you need it. Most people don't. If Java is installed, disable it — not JavaScript — in your browsers.
  Regardless of version, experience has shown that Java on the Web can't be trusted. If you must use a Java applet for a task on a specific site, enable Java only for that site in Safari. Never enable Java for a public website that carries third-party advertising. Use it only on well-known, login-protected, secure websites without ads. In Safari 6 or later, you'll see a lock icon in the address bar with the abbreviation "https" when visiting a secure site.
  Follow the above guidelines, and you’ll be as safe from malware as you can practically be. The rest of this comment concerns what you should not do to protect yourself from malware.
  7. Never install any commercial "anti-virus" or "Internet security" products for the Mac, as they all do more harm than good, if they do any good at all. Any database of known threats is always going to be out of date. Most of the danger is from unknown threats. If you need to be able to detect Windows malware in your files, use one of the free anti-virus products in the Mac App Store — nothing else.
  Why shouldn't you use commercial "anti-virus" products?
  Their design is predicated on the nonexistent threat that malware may be injected at any time, anywhere in the file system. Malware is downloaded from the network; it doesn't materialize from nowhere.
  In order to meet that nonexistent threat, the software modifies or duplicates low-level functions of the operating system, which is a waste of resources and a common cause of instability, bugs, and poor performance.
  By modifying the operating system, the software itself may create weaknesses that could be exploited by malware attackers.
  8. An anti-malware product from the App Store, such as "ClamXav," doesn't have these drawbacks. That doesn't mean it's entirely safe. It may report email messages that have "phishing" links in the body, or Windows malware in attachments, as infected files, and offer to delete or move them. Doing so will corrupt the Mail database. The messages should be deleted from within the Mail application.
  An anti-virus app is not needed, and should not be relied upon, for protection against OS X malware. It's useful only for detecting Windows malware. Windows malware can't harm you directly (unless, of course, you use Windows.) Just don't pass it on to anyone else.
  A Windows malware attachment in email is usually easy to recognize. The file name will often be targeted at people who aren't very bright; for example:
  ♥♥♥♥♥♥♥♥♥♥♥♥♥♥!!!!!!!H0TBABEZ4U!!!!!!!.AVI♥♥♥♥♥♥♥♥♥♥♥♥♥♥.exe
  Anti-virus software may be able to tell you which particular virus or trojan it is, but do you care? In practice, there's seldom a reason to use the software unless a network administrator requires you to do it.
  The ClamXav developer won't try to "upsell" you to a paid version of the product. Other developers may do that. Don't be upsold. For one thing, you should not pay to protect Windows users from the consequences of their choice of computing platform. For another, a paid upgrade from a free app will probably have the disadvantages mentioned in section 7.
  9. It seems to be a common belief that the built-in Application Firewall acts as a barrier to infection, or prevents malware from functioning. It does neither. It blocks inbound connections to certain network services you're running, such as file sharing. It's disabled by default and you should leave it that way if you're behind a router on a private home or office network. Activate it only when you're on an untrusted network, for instance a public Wi-Fi hotspot, where you don't want to provide services. Disable any services you don't use in the Sharing preference pane. All are disabled by default.
  10. As a Mac user you don't have to live in fear that your computer is going to be infected every time you install an application, read email, or visit a web page. But neither should you have the false idea that you will always be safe, no matter what you do. The greatest harm done by security software is precisely its selling point: it makes people feel safe. They may then feel safe enough to take risks from which the software doesn't protect them. Nothing can lessen the need for safe computing practices.

• Is it necessary to install an anti-virus software for mac?

  As above. Thanks.

  The only reason I have ever seen to install
  anti-virus on my Mac was to satisfy my corporate IT
  guys requirements that I am running up-to-date
  anti-virus software before putting my Mac on their
  LAN.
  I basically launch it if they want to see it, then
  close it...because its useless
  If your company's IT staff is not so bright, write up a shell script that echos stuff as if its scanning for virus. Something like
  #!/bin/bash
  echo "Scanning for virus"
  sleep 2
  echo "..."
  sleep 4
  echo "0 Virus(es) found"
  exit
  stick that in a file, chmod +x, run from terminal with 'sh files' or './file'
  BlackBook   Mac OS X (10.4.7)  

• Is there an anti virus program for mac 9.1? Think I have a virus

  I don't use an anti virus - using outlook express I got a strange message with no subject or sender - just a blank line. I tried deleting it but it wouldn't be deleted. Since then every time I try to delete it - it crashes the system. Same with Internet Explorer. And now my main screen icons will just 'disappear' from the screen then it crashes.
  I tried looking for an antivirus but all of them seem to be for 9.2 or higher and I don't know what to do - if I upload to 9.2 will I loose any programs or files - new to this from the PC world. Thanks
  G4   Mac OS 9.1.x  

  Hi, debbieM -
  Welcome to Apple's Discussions.
  It is doubtful that you have a virus - no virus which can harm OS 9 has been released in well over 10 years.
  Getting a message every now and then with no subject and no body is not unusual. There are a couple of ways to get rid of a message without opening it.
  Click on an adjacent message which is okay to delete, then hold down the Shift key and select the blank messages - none of them will open. Once you have selected all the ones for deletion, press the Delete key.
  Or, click and hold on a message; or press the Control key and click and hold on a message. A contextual menu should appear; one of the choices in that menu shuld be to delete the messge. If you choose that, it should happen without the message ever opening.
  Things you can do to make Outlook Express run smoother -
  • Increase the Preferred memory allocation for it. Adding 20 or 30 thousand to the original Preferred amount, or even more if you have sufficient RAM, is not excessive.
  Article #18278 - Assigning More Memory to an Application
  • Compact the databases. To do that - with OE not running, hold down the Option key and start up OE. A splash screen will open, asking if you want to compact the database files - click okay, and follow the prompts.
  For Internet Explorer, increase its Preferred memory, a lot. Adding 30 to 50 thousand is not excessive.
  And now my main screen icons will just 'disappear' from the screen then it crashes.
  That could indicate one or more other problems.
  • How full is your hard drive? It is good practice to not allow your hard drive to get more than 85% full. When it does get more full than that, odd behaviors including an unstable OS begin occuring.
  • Try rebuilding the desktop file (note that the desktop file has very little to do with the desktop). To rebuild the desktop safely, restart - immediately hold down the Shift key until you get the "Extensions Off" message; then release Shift and hold down the Command and Option keys until you get the splash screen asking if you want to rebuild the desktop; click yes (or okay). Once that's done, restart to turn your extensions back on.
  • Boot to your most recent OS 9 Install CD, one valid for that machine - ideally it would be OS 9.1, the same as is on the machine. Once booted to the CD, run Disk First Aid from the Utilities folder on the CD. Let DFA have a look at your hard drive, and allw it to repair what it can - it may take more than one pass to do this, especially if the drive is rather full.
  If DFA finds things it just can't fix, post back with the description of the problems found.
  if I upload to 9.2 will I loose any programs or files....
  Updating the OS from OS 9.1 to OS 9.2.1 should not cause any loss of files.
  However, in general updating an OS is not a fix for a damaged or unstable OS. It is better to get the OS now on the drive healthy before updating it.
  When the machine goes unstable (icons begin disappearing, etc.) are there any error messages?

• Do we need anti virus softwares for Mac book pro?

  do we need antivirus softwares for mac book pro?

  That is a complex question, whose answer depends greatly on you. See my Mac Malware Guide for the information you need to protect yourself and to make a decision about anti-virus software.

• Anti virus program for mac? nessesary?

  I will soon purchase a mac book and I am wondering if I should install anti virus software on it.
  Is it a good idea to install macafee or other anti virus or is it just a resource hog?

  Alex:
  There is no known virus for Mac OS X. OS X has a great security system of its own. If you implement the system fully you will be ahead of what a-v software can do for you. Take a look at Security: OS Hardening and follow the links to the other Security titles. You may want to look at the Corsaire White Paper linked in the article.
  I have never used a-v software, nor have a lot of other mac users. However, if a-v software helps you sleep better at night, the utility of choice for Mac users is ClamX.
  Please don't hesistate to post back with further questions or comments.
  Good luck.
  cornelius

• Anti-Virus Solutions For Mac OS X Server 10.3/10.4 and clients

  Hello. I am currently researching an anti-virus solution, for our network, consisting around 60% Mac's.
  Does anyone know of any decent packages, that I could implement, I have looked at a few, and I'm not confident in using them, mainly from prior experience, with standalone units, let alone on a network.
  Any ideas would be greatly appreciated !!

  Done

• Do we need anti virus for a mac??, do we need anti virus for a mac??

  do v need anti virus for mac?

  Hi..
  Not so much a virus to be concerned about on a Mac but malware is.
  Good article here > Thomas' Corner : Mac Virus Guide

• Do you need an anti-virus software on Mac

  Is it necessary to have an anti-virus application on a Mac?

  In most cases, no.  See my Mac Malware Guide for details.
  (Note that my pages contain links to other pages that promote my services, and this should not be taken as an endorsement of my services by Apple.)

• Do I need security, anti-virus etc on mac?

  Should I get anti virus security or some sort of security on my macbook. Are there any free downloads i could get that would do the job?

  tracyryan354 wrote:
  Should I get anti virus security or some sort of security on my macbook. Are there any free downloads i could get that would do the job?
  AV is not needed on a Mac. I have not used any for years. MS software is something else - but for Mac users it's an option that is really unneeded, and in some cases causes more problems than it does not cure. There is only one known Mac threat and you have to practically beg it to infect your computer.
  If you create a non-administrator account and use this for most online activities, it becomes nearly impossible for anything to attack the system without your knowing it.
  That being said, you can look into ClamAV, which is mainly for eMail, I believe. Some use it and like it.
  I will wait until it's really necessary, since most AV apps slow down the machine.
  You can get ClamAV here:
  http://www.clamav.net/download/

• Anti virus on a mac

  Okay, so i just picked up a mac not too long ago and when i was buying i was told from several people anti virus isnt need on a mac, it was basically built into mountain lion? is this true... give me some tips

  This comment applies to malicious software ("malware") that's installed unwittingly by the victim of a network attack. It does not apply to software, such as keystroke loggers, that may be installed deliberately by an attacker who has hands-on access to the victim's computer. That threat is in a different category, and there's no easy way to defend against it. If you have reason to suspect that you're the target of such an attack, you need expert help.
  Alll versions of OS X since 10.6.7 have been able to detect known Mac malware in downloaded files. The recognition database is automatically updated once a day; however, you shouldn't rely on it, because the attackers are always at least a day ahead of the defenders. In most cases, there’s no benefit from any other automated protection against malware.
  Starting with OS X 10.7.5, there is another layer of built-in malware protection, designated "Gatekeeper" by Apple. By default, applications that are downloaded from the network will only run if they're digitally signed by a developer with a certification from Apple. Applications certified in this way haven't actually been tested by Apple (unless they come from the Mac App Store), but you can be sure that they haven't been modified by anyone other than the developer, and his identity is known, so he could be held responsible if he knowingly released malware. For most practical purposes, signed applications can be considered safe. Note, however, that there are some caveats concerning Gatekeeper:
  It doesn't apply to software that comes packaged as an installer. Treat all third-party installers with caution.
  It can be disabled or overridden by the user.
  It can be bypassed by some third-party networking software, such as BitTorrent clients and Java applets (see below.)
  It only applies to applications downloaded from the network.
  For more information about Gatekeeper, see this Apple Support article. 
  Notwithstanding the above, the most effective defense against malware attacks is your own intelligence. All known malware on the Internet that affects a fully-updated installation of OS X 10.6 or later takes the form of so-called "trojan horses," which can only have an effect if the victim is duped into running them. If you're smarter than the malware attacker thinks you are, you won't be duped. That means, primarily, that you never install software from an untrustworthy source. How do you know a source is untrustworthy?
  Any website that prompts you to install a “codec,” “plug-in,” or “certificate” that comes from that same site, or an unknown one, is untrustworthy.
  A web operator who tells you that you have a “virus,” or that anything else is wrong with your computer, or that you have won a prize in a contest you never entered, is trying to commit a crime with you as the victim. [Some reputable websites did legitimately warn users who were infected with the "DNSChanger" malware. That exception to this rule no longer applies.]
  “Cracked” copies of commercial software downloaded from a bittorrent are likely to be infected.
  Software with a corporate brand, such as Adobe Flash Player, must be downloaded directly from the developer’s website. No intermediary is acceptable.
  Java on the network (not to be confused with JavaScript, to which it's not related) is always a potential weak spot in the security of any operating system. If Java is not installed, don't install it unless you really need it. If it is installed, you should disable it (not JavaScript) in your web browsers. Few websites have Java content nowadays, so you won’t be missing much. This setting is mandatory in OS X 10.5.8 or earlier, because Java in those obsolete versions has known security flaws that make it unsafe to use on the Internet. The flaws will never be fixed. Regardless of version, experience has shown that Java can never be fully trusted, even if no vulnerabilities are publicly known at the moment.
  Follow these guidelines, and you’ll be as safe from malware as you can reasonably be.
  Never install any commercial "anti-virus" products for the Mac, as they all do more harm than good. If you need to be able to detect Windows malware in your files, use the free software ClamXav — nothing else.

• Why is Norton Anti-virus bad for mac?

  Hi,
  I like to know why Norton Anti-virus is bad for mac? Someone told me it's because norton digs around in the directory and that's a no no. Has anyone had bad experiences with norton? I like to know the pros and cons, thanks.
  Tom

  Hi, Tom.
  NAV is not "bad for mac."
  Do not believe the FUD (Fear, Uncertainty, and Doubt) spread about Norton AntiVirus. A good bit of that is undeserved, especially when it comes to NAV 10, which is the Tiger-compatible version and what I use.
  I recently engaged in a debate on this subject in this thread, so you can read some of my thoughts there in response to the usual FUD spread about NAV and Symantec Norton products in general.
  There are security threats that can affect your Mac besides those cited by Kurt. There is more than the mere threat of passing along Windows viruses.
  See my "Detecting and avoiding malware and spyware" FAQ for my recommendations as well as a list of some recent Mac OS X security threats that have emerged, including Trojans, rootkits, and spyware.
  Good luck!
  Dr. Smoke
  Author: Troubleshooting Mac® OS X
  Note: The information provided in the link(s) above is freely available. However, because I own The X Lab™, a commercial Web site to which some of these links point, the Apple Discussions Terms of Use require I include the following disclosure statement with this post:
  I may receive some form of compensation, financial or otherwise, from my recommendation or link.