Please advise on security software/anti virus barrier

Hi there,
I would just like to know which security software/antivirus woks best with mountain lion?
cheers

1. This comment applies to malicious software ("malware") that's installed unwittingly by the victim of a network attack. It does not apply to software, such as keystroke loggers, that may be installed deliberately by an intruder who has hands-on access to the victim's computer. That threat is in a different category, and there's no easy way to defend against it. If you have reason to suspect that you're the target of such an attack, you need expert help.
OS X now implements three layers of built-in protection specifically against malware, not counting runtime protections such as execute disable, sandboxing, system library randomization, and address space layout randomization that may also guard against other kinds of exploits.
2. All versions of OS X since 10.6.7 have been able to detect known Mac malware in downloaded files, and to block insecure web plugins. This feature is transparent to the user, but internally Apple calls it "XProtect." The malware recognition database is automatically checked for updates once a day; however, you shouldn't rely on it, because the attackers are always at least a day ahead of the defenders.
The following caveats apply to XProtect:
It can be bypassed by some third-party networking software, such as BitTorrent clients and Java applets.
It only applies to software downloaded from the network. Software installed from a CD or other media is not checked.
3. Starting with OS X 10.7.5, there has been a second layer of built-in malware protection, designated "Gatekeeper" by Apple. By default, applications and Installer packages downloaded from the network will only run if they're digitally signed by a developer with a certificate issued by Apple. Software certified in this way hasn't necessarily been tested by Apple, but you can be reasonably sure that it hasn't been modified by anyone other than the developer. His identity is known to Apple, so he could be held legally responsible if he distributed malware. That may not mean much if the developer lives in a country with a weak legal system (see below.)
Gatekeeper doesn't depend on a database of known malware. It has, however, the same limitations as XProtect, and in addition the following:
It can easily be disabled or overridden by the user.
A malware attacker could get control of a code-signing certificate under false pretenses, or could simply ignore the consequences of distributing codesigned malware.
An App Store developer could find a way to bypass Apple's oversight, or the oversight could fail due to human error.
For the reasons given above, App Store products, and other applications recognized by Gatekeeper as signed, are safer than others, but they can't be considered absolutely safe. "Sandboxed" applications may prompt for access to private data, such as your contacts, or for access to the network. Think before granting that access. OS X security is based on user input. Never click through any request for authorization without thinking.
4. Starting with OS X 10.8.3, a third layer of protection has been added: a "Malware Removal Tool" (MRT). MRT runs automatically in the background when you update the OS. It checks for, and removes, malware that may have evaded the other protections via a Java exploit (see below.) MRT also runs when you install or update the Apple-supplied Java runtime (but not the Oracle runtime.) Like XProtect, MRT is presumably effective against known attacks, but maybe not against unknown attacks. It notifies you if it finds malware, but otherwise there's no user interface to MRT.
5. XProtect, Gatekeeper, and MRT reduce the risk of malware attack, but they're not absolute protection. The first and best line of defense is always your own intelligence. With the possible exception of Java exploits, all known malware circulating on the Internet that affects a fully-updated installation of OS X 10.6 or later takes the form of so-called "trojan horses," which can only have an effect if the victim is duped into running them. The threat therefore amounts to a battle of wits between you and the malware attacker. If you're smarter than he thinks you are, you'll win.
That means, in practice, that you never use software that comes from an untrustworthy source, or that does something inherently untrustworthy. How do you know what is trustworthy?
Any website that prompts you to install a “codec,” “plug-in,” "player," "extractor," or “certificate” that comes from that same site, or an unknown one, is untrustworthy.
A web operator who tells you that you have a “virus,” or that anything else is wrong with your computer, or that you have won a prize in a contest you never entered, is trying to commit a crime with you as the victim. (Some reputable websites did legitimately warn visitors who were infected with the "DNSChanger" malware. That exception to this rule no longer applies.)
Pirated copies or "cracks" of commercial software, no matter where they come from, are unsafe.
Software of any kind downloaded from a BitTorrent or from a Usenet binary newsgroup is unsafe.
Software that purports to help you do something that's illegal or that infringes copyright, such as saving streamed audio or video for reuse without permission, is unsafe. All YouTube "downloaders" are in this category, though not all are necessarily harmful.
Software with a corporate brand, such as Adobe Flash Player, must be downloaded directly from the developer’s website. If it comes from any other source, it's unsafe.
Even signed applications, no matter what the source, should not be trusted if they do something unexpected, such as asking for permission to access your contacts, your location, or the Internet for no obvious reason.
6. Java on the Web (not to be confused with JavaScript, to which it's not related, despite the similarity of the names) is a weak point in the security of any system. Java is, among other things, a platform for running complex applications in a web page, on the client. That was always a bad idea, and Java's developers have proven themselves incapable of implementing it without also creating a portal for malware to enter. Past Java exploits are the closest thing there has ever been to a Windows-style virus affecting OS X. Merely loading a page with malicious Java content could be harmful.
Fortunately, client-side Java on the Web is obsolete and mostly extinct. Only a few outmoded sites still use it. Try to hasten the process of extinction by avoiding those sites, if you have a choice. Forget about playing games or other non-essential uses of Java.
Java is not included in OS X 10.7 and later. Discrete Java installers are distributed by Apple and by Oracle (the developer of Java.) Don't use either one unless you need it. Most people don't. If Java is installed, disable it — not JavaScript — in your browsers.
Regardless of version, experience has shown that Java on the Web can't be trusted. If you must use a Java applet for a task on a specific site, enable Java only for that site in Safari. Never enable Java for a public website that carries third-party advertising. Use it only on well-known, login-protected, secure websites without ads. In Safari 6 or later, you'll see a lock icon in the address bar with the abbreviation "https" when visiting a secure site.
Follow the above guidelines, and you’ll be as safe from malware as you can practically be. The rest of this comment concerns what you should not do to protect yourself from malware.
7. Never install any commercial "anti-virus" or "Internet security" products for the Mac, as they all do more harm than good, if they do any good at all. Any database of known threats is always going to be out of date. Most of the danger is from unknown threats. If you need to be able to detect Windows malware in your files, use the free software  ClamXav— nothing else.
Why shouldn't you use commercial "anti-virus" products?
Their design is predicated on the nonexistent threat that malware may be injected at any time, anywhere in the file system. Malware is downloaded from the network; it doesn't materialize from nowhere.
In order to meet that nonexistent threat, the software modifies or duplicates low-level functions of the operating system, which is a waste of resources and a common cause of instability, bugs, and poor performance.
By modifying the operating system, the software itself may create weaknesses that could be exploited by malware attackers.
8. ClamXav doesn't have these drawbacks. That doesn't mean it's entirely safe. It may report email messages that have "phishing" links in the body, or Windows malware in attachments, as infected files, and offer to delete or move them. Doing so will corrupt the Mail database. The messages should be deleted from within the Mail application.
ClamXav is not needed, and should not be relied upon, for protection against OS X malware. It's useful only for detecting Windows malware. Windows malware can't harm you directly (unless, of course, you use Windows.) Just don't pass it on to anyone else.
A Windows malware attachment in email is usually easy to recognize. The file name will often be targeted at people who aren't very bright; for example:
♥♥♥♥♥♥♥♥♥♥♥♥♥♥!!!!!!!H0TBABEZ4U!!!!!!!.AVI♥♥♥♥♥♥♥♥♥♥♥♥♥♥.exe
ClamXav may be able to tell you which particular virus or trojan it is, but do you care? In practice, there's seldom a reason to use ClamXav unless a network administrator requires you to run an anti-virus application.
9. The greatest harm done by security software, in my opinion, is in its effect on human behavior. It does little or nothing to protect people from emerging threats, but if they get a false sense of security from it, they may feel free to do things that expose them to higher risk. Nothing can lessen the need for safe computing practices.
10. It seems to be a common belief that the built-in Application Firewall acts as a barrier to infection, or prevents malware from functioning. It does neither. It blocks inbound connections to certain network services you're running, such as file sharing. It's disabled by default and you should leave it that way if you're behind a router on a private home or office network. Activate it only when you're on an untrusted network, for instance a public Wi-Fi hotspot, where you don't want to provide services. Disable any services you don't use in the Sharing preference pane. All are disabled by default.

Similar Messages

  • I've just downloaded FF 4 beta, do i still need to purchase internet security software & anti-virus software for protection?

    I have not renewed my McAfee. i am not sure whether FF 4 beta security protection is good enough. I do internet banking often. do i still need to have other security or anti-virus software?

    Firefox is just a web browser, you still need anti-virus, anti-malware and firewall protection.

  • Some kinds of the Security software(Anti-virus) always disable in Firefox,why ?

    None.

    They may not be compatible with firefox - it's most likely an add-on. Or if you could explain further it would help better.

  • Can't access safe mode to delete System Security fake anti virus virus. HELP.

    Hi, our SL500 has become infected with "System Security" fake anti virus software. We have tracked down how to remove it.
    http://www.geekstogo.com/forum/system-security-malware-t222291.html
    However when we get to the "reboot your computer in safe mode" (see instructions below) we can't as this is not possible.
    We have tried F8...........Repeatedly . And also  Run->msconfig->BOOT.INI->/SAFEBOOT . But to no avail . Actually we get a pop up stating that Windows  can not find said command and have we typed it in correctly . Please could some one help us as this is driving us insane . One last thing . A computer WITHOUT a "safe mode " option, isn't that kinda of unsafe and a tad.....
    Thanks in advance.  
    Instructions for malware removal. 
    You will need to print out a copy of these instructions, or save them to NotePad and put a shortcut to the file on the desktop so that you can refer to while you complete this procedure as you will be required to boot into Safe Mode where you wont have internet access.
    Please download ATF Cleaner by Atribune.
    Caution: This program is for Windows 2000, XP and Vista only
    Double-click ATF-Cleaner.exe to run the program.
    Under Main choose: Select All
    Click the Empty Selected button.
    If you use Firefox browser
    Click Firefox at the top and choose: Select All
    Click the Empty Selected button.
    NOTE: If you would like to keep your saved passwords, please click No at the prompt.
    If you use Opera browser
    Click Opera at the top and choose: Select All
    Click the Empty Selected button.
    NOTE: If you would like to keep your saved passwords, please click No at the prompt.
    Click Exit on the Main menu to close the program.
    Run MBAM again, only this time perform a full scan and post the log.
    Please click here to download AVP Tool by Kaspersky.
    Save it to your desktop.
    Reboot your computer into SafeMode.
    You can do this by restarting your computer and continually tapping the F8 key until a menu appears.
    Use your up arrow key to highlight SafeMode then hit enter.
    Double click the setup file to run it.
    Click Next to continue.
    It will by default install it to your desktop folder.Click Next.
    Hit ok at the prompt for scanning in Safe Mode.
    It will then open a box There will be a tab that says Automatic scan.
    Under Automatic scan make sure these are checked.
    System Memory
    Startup Objects
    Disk Boot Sectors.
    My Computer.
    Also any other drives (Removable that you may have)
    After that click on Security level then choose Customize then click on the tab that says Heuristic Analyzer then choose Enable Deep rootkit search then choose ok.
    Then choose OK again then you are back to the main screen.
    Then click on Scan at the to right hand Corner.
    It will automatically Neutralize any objects found.
    If some objects are left un-neutralized then click the button that says Neutralize all
    If it says it cannot be Neutralized then chooose The delete option when prompted.
    After that is done click on the reports button at the bottom and save it to file name it Kas.
    Save it somewhere convenient like your desktop and just post only the detected Virus\malware in the report it will be at the very top under Detected post those results in your next reply.
    Note: This tool will self uninstall when you close it so please save the log before closing it.
    In your next reply I would like to see:
    C:\RSIT\info.txt
    MBAM log
    Kaspersky AVP scan results
    Also let me know how the computer is behaving. 
    This post has been edited by Octagonal: Dec 27 2008, 08:08 AM 

    Thanks for trying to help. Sadly, I followed the instructions and it rebooted to the blue screen again.
    It's going to have to go to Apple for repairs now. I'm out of options.
    I am wondering how much easier it would have been if I'd created a time machine restore point. I got what I deserved for failing to do that, but I'm doubtful even that would have worked in this case. It does seem to be because of that piece of widely reported malware that didn't want to leave without causing damage.
    The most frustrating aspect is the safe boot. I get to the desktop but without any menu, finder or dock. It seems to be similar to the problem below...
    http://www.macsmarts.com/?p=109
    But that's for Tiger. I tried that to no effect.
    Like I said, it's going to have to go to Apple now because I've done so many things I don't know if I'm just digging myself a deeper hole.
    Thanks again for offering help.

  • Please would you stop bundling Anti-Virus software with Adobe Reader?

    I would be really grateful if Adobe would stop bundling Anti-Virus software with the Adobe Reader updates. Pre-selecting  the (download - Anti virus software) check-box in the dialogue box smacks of sharp practice. I have nothing against Anti-Virus software, but I want to take control of the process, not have Adobe make important choices for me: it really is very unprofessional.

    This is a user forum; you have to put your request to Adobe.
    Having said that, you can avoid bundled software by downloading the installer from http://get.adobe.com/reader/enterprise/
    Updates/patches are best downloaded by navigating the FTP site ftp://ftp.adobe.com/pub/adobe/reader/

  • VERIZON INTERNET SECURITY SUITE ANTI VIRUS NOT COMPATIBLE WITH WINDOWS 7

    It seems to me that Verizon/Radialpoint should have figured out the solution for this long before Windows 7 hit the streets but here we are a month later and still no anti virus from the product we're paying for. I've wasted countless hours with all levels of tech support, everyone has been very professional and nice but that's not getting the job done. Not only that, I haven't heard a word from the communications giant about the problem. This scares me because once a month I get my pension from Verizon and don' have much faith in a company that leaves it's customers hanging like this.

    First of all, Verizon can't control what Radial Point does or doesn't have ready. If they don't provide it to Verizon, then Verizon can't provide it to you.
    Second, you might want to keep an eye on this thread for updates and information.
    If a forum member gives an answer you like, give them the Kudos they deserve. If a member gives you the answer to your question, mark the answer as Accepted Solution so others can see the solution to the problem.
    "All knowledge is worth having."

  • HT1338 software anti-virus

    I have a virus in my MacBook Pro.
    I can't open my Facebook account because this virus may take my passwords
    how can i solve this problem? Thanks.

    It's very unlikely that you have any kind of malware, and more unlikely still that malware would be interfering with your ability to log in to Facebook. Can you be more specific about what the precise behavior you're seeing is?
    Is Facebook preventing you from logging in and claiming that you have a virus? If so, see:
    Facebook isn’t letting me log in and is telling me I have a virus!

  • Urgent- Lost Ipad- please advise with security tips!

    Hi,
    My boyfriend just lost his ipad- he thinks he left it on a plane and it doesn't seem to have been handed in.
    It doesn't have a sim card in it- and I don't think it's registered with Apple at all, so there's probably no way to block it?
    It didn't have a passcode on it!!
    He had two mail accounts set up in the mail app. He's obviously really concerned whoever found it will be able to access his mail. If he logs in to gmail on the web browser and changes his password will that mean that whoever has the ipad can no longer access his mail accounts in the mail app?
    Any help v. gratefully appreciated!
    Thanks.

    ****!
    suggest he IMMEDIATELY changes ALL his passwords.
    this is where the iPad falls down badly......if it was 3G it has an IME number which Apple should have developed to have a 'knockout' facility at least accessing 3G which means that if it was sold on the buyer would be suspicious.
    it is not justbthe loss of the iPad itself, that you can really kick yourself for...... But it's the worry aboutnwhat info is left on the machine.
    The Appleology brigade will preach that the password protection should have been ON but why doesn't Apple have the facility to lock a reported stolen pad at upgrade.....the tech is there but is there a will!

  • The application can "not initialize the application's security component" and so Firefox will not open any more... PLEASE ADVISE!!

    One day while trying to run the firefox application a box popped up and said:
    "Could not initialize the application's security component. The most likely cause is problems with the files in your application's profile directory. Please check that this directory has no read/write restrictions and your hard disk is not full or close to full. It is recommended that you exit the application and fix the problem."
    Ive tried everything and even deleted and then reinstalled firefox... We miss it!!

    Please try
    * disabling any background anti-virus software you have, as it may be using Firefox files while it loads and prevent it from reading them
    * following the steps at [[Could not initialize the browser security component]]

  • Quicktime Newsletter Email - Blocked by F-Secure Anti-Virus!

    Would someone please provide me with the email address or phone number of someone at Apple who might be interested in learning that F-Secure's Anti-Virus software is preventing the delivery of the emailed Quicktime Newsletter?
    I have the sender "[email protected]" listed as a "Safe Sender" but the last 3 newletters I've received contain only the following the message:
    "This message was modified by F-Secure Anti-Virus E-Mail Scanning."
    Thank you.

    I would think rather than it's the developer of F-Secure who needs to know this, since it's their product that's erroneously blocking the e-mails (and if it's blocking those, it's quite probably that it is blocking or will block others) and ignoring the "safe sender" setting.

  • Virex Anti-virus software

    Hello,
    I've heard from a few people that antivirus software on macs can do more damage then they are worth. Is that true?
    The reason I am asking is b/c my school offers a free anti-virus program (Virux anti-virus) and I'll be graduating soon, so if I am going to download it, I might as well do it while its still free. Anyone ever heard of it and if it is any good? Any help is appreciated.
    Thanks
    Powerbook G4 15"   Mac OS X (10.4.6)  

    There are zero viruses for OS X. How can an anti-virus product find OS X viruses when they don't exist?
    Permissions (which are at the very foundation of OS X) are the best 'anti-virus' products you can get. These permissions are one of the reasons OS X is so stable and virus-free. I have never, ever used anti-virus software on any of my Macs (even when I was using OS 6 - 9.1), and I have never had a virus, BECAUSE NONE EXIST FOR OS X! When 'security companies' such as McAfee, Norton et al. advise you to install anti-virus, what are their motives? They're certainly not looking out for you, more likely trying to get you to buy their products, which, on OS X, is nothing more than a placebo.
    If you absolutely have to run anti-virus (some companies insist you run it), download ClamXav. It's free, and you don't need to give it root access for it to work. ANY software that crop sprays your HD with files all over the place and needs root access to run is a recipe for trouble, ask any Norton users.
    My $0.02.
    Jamie

  • Virus Barrier X4 question and a Top 10 Network/Security question

    I am currently running Norton AV/Mac. It runs fine, no problems, no slow down, am happy! However, I know that there are some very experienced Mac users who are very down on Norton AV as far as causing problems/hogging resources/slowing things down...again, I don't have any problem, but I am still a newbie. I see however that one of the top 10 Network/Security downloads is Virus Barrier X4. If I want to run an AV program, could someone shed some light on wht this would be a better application? Also the number 1 download in this category is Mac Scan. I am confused, Forget virus's, I thought there was no Spyware/Malware? Why would so many people make this such a popular download..Curious! Thanks, Bill

    Bostonfan49,
    Spyware is a self-inflicted injury.
    To prevent drive-bys, remember to uncheck the Open "safe" files after downloading box in the Safari>Preferences>General tab and make sure that you're blocking pop-up windows.
    Configure your firewall correctly (turn off ALL unused services) and stealth it.
    Don't use P2P (Limewire and the like) or visit "dodgy" (unknown, copyright infringing, skanky, pr0n, etc.) Web sites.
    Never, ever install any program or give any installer your admin password unless you are certain that you know and trust the source.
    Create a separate administrator account for installing software and updates and make your normal user account an ordinary, nonadminstrative user.
    OS X is not immune to spyware: The spyware would still have to be coded to run in OS X. Requiring an administrator account and click-the-"Yes"-box user permission to install and run didn't prevent KaZaa (and its bundled nasties) from being downloaded and installed by millions, so this OS X "barrier" to malware is subject to the same vulnerability. That said, I'm not aware of much of anything in the way of spyware for Macs.
    -Wayne

  • I Opened A Strange Attachment, Do I need To Install Anti Virus Software?

    I have Yahoo Mail and recently received some emails from myself with strange attachments. Similar emails were sent to random contacts in my Yahoo contact list. I did not send these emails. When I changed my email password, these emails stopped. However, I'm worried my iMac G5 (OS 10.6.4) has a virus because I opened one of the attachments. Also, could a worm virus on my IMac have caused these emails? Yahoo advised me to run anti-virus software. Do I need to run anti-virus software and if so, which one? I've been reading online that anti virus software can cause more harm than good and make your mac "buggy," whatever that means.

    P NewYork wrote:
    I've been reading online that anti virus software can cause more harm than good and make your mac "buggy," whatever that means.
    Yes, you read right! There are no known viruses that attack OS X and other exploits are very rare.
    It sounds like your email address is being spoofed.
    http://en.wikipedia.org/wiki/Spoofing_attack
    This means that infected PC is going through its contact list and sending spoofed as that address.
    There's nothing you can do but alert your PC friends.
    EDIT: Are these emails actually being sent by your Mac? Check in Sent mail folder?
    If you feel you MUST run AV software to prove you have nothing , do a scan with ClamXav a mac friendly freeware app.
    -mj
    Message was edited by: macjack

  • Slow wired connection no anti virus used.

    I have a 3T time capsule used as a hard drive. I also send out my wifi from it.
    On Ethernet between my desktop and the capsule, to copy a file to the drive is about 30 secs per MB! Why might it be so slow please? Thanks.
    ps - no anti virus software and doing manual copies /back ups to the drive.

    Do you have wireless turned on as well as ethernet on the desktop computer.. ?? If so turn off the wireless.
    Make sure IPv6 in ethernet is set to link local only on the computer.
    No improvement check in the network preferences that the actual ethernet link speed is gigabit..
    A simple ifconfig from terminal will show it to you if you don't know where to find details like the above.
    en0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
      options=2b<RXCSUM,TXCSUM,VLAN_HWTAGGING,TSO4>
      ether 40:6c:8f:08:05:0c
      inet6 fe80::426c:8fff:fe08:50c%en0 prefixlen 64 scopeid 0x4
      inet 192.168.2.218 netmask 0xffffff00 broadcast 192.168.2.255
      media: autoselect (1000baseT <full-duplex,flow-control>)
      status: active

  • Anti virus popup help!

    For a few days, I've noticved every now and again a pop up will appear and it looks as though its my computer but it isn't. It displays this:
    I am able to close the window out. I've ran a virus scan but nothing comes up. Can someone help me please?!
    Solved!
    Go to Solution.

    ..any tips for a great internet security program?
    I'm not big on the all-inclusive stuff. I like one that knows its place, like ESET NOD32 (not Smart Security) for anti-virus and the one you used for spyware.
    -Jerry

Maybe you are looking for

  • SSLPeerUnverifiedException: peer not authenticated (HELP!)

    I'm trying to write a very simple Java app that connects to a IIS/Tomcat server and uploads a file (using PUT) via HTTPS (using JSSE and the HTTPClient package w/JSSE patch.) I've done this with no problems using straight HTTP, however I'm not having

  • Multifunction Printer Problems

    My printer Lexmark Prevail 705, has been giving me some problems for some time in regards to network scanning. The printer (scanner bed) is recognized via USB, but isnt recognized via my network. when ever i go to 'Print & Scan' i would check the sha

  • How to Create Server BC4J Package in OAF 10.1.3.3.0.3

    Hi all, Can any one help me out in getting clear about creating Server BC4J package in OAF 10.1.3.3.0.3, as in 9i we right click onproject.jpr file & click on new business componant package.but in 10.1.3.3.0.3 version there no option kindly help me o

  • 5.1 appears to have broken the relationship function in contacts

    5.1 appears to have broken the relationship function in contacts on the iPhone 4s.  You no long have "relationships" as a field to add to the contact.  I'm limited to 3 only. Worked in 5.0. Anyone else see this?

  • Delegate Control of an OU

    how do i Delegate control for an OU so that members of a group that has been delegated control and move computer objects from one OU to another? I can delegate control for users and groups but can't seem to be able to delegate control of computers in