Issue No. 57April 2017

 

Macs: Security Facts and Fallacies

There are many Apple Mac security myths circulating among users. So how can you tell if the advice you’re reading is fact or fallacy? Read on to find out!

Fallacy: Macs don’t get viruses

The idea that there are no viruses for the Mac goes back to the beginning of Mac OS X. Unfortunately, this is a myth. As with most good myths, though, there’s a slight element of truth.

Technically speaking, a virus is malware that spreads itself by attaching to other files. In this strict definition, there are no Mac viruses. However, by that token, there also aren’t very many Windows viruses these days, either. Viruses have mostly disappeared from the threat landscape.

The average person, though, understands a virus to be any kind of malicious software. (A better term for this is “malware.”) Since there is malware for the Mac, the spirit of the “there are no Mac viruses” claim is false. Don’t allow yourself to be misled!

Fact: There’s not as much Mac malware out there

True malware is malicious in nature-thus the name, malicious software-with the goal of stealing or scamming data or money from the user. Examples of malware are backdoors that provide access to the computer, spyware that logs keystrokes and captures pictures with the webcam, ransomware that encrypts the user’s files to hold them for ransom, and other such nefarious programs.

On the Mac, true malware is rare. The average Mac user has never seen any malware. So why should Mac users be concerned? Because other threats are a rapidly growing problem on the Mac. Over the last several years, there has been an increasing amount of adware and Potentially Unwanted Programs (PUPs) for the Mac.

Adware is software that injects ads into websites where they don’t belong and changes your search engine to a different one.  PUPs are programs that are generally unwanted by users. These can include so-called “legitimate” keyloggers (marketed as a means for monitoring your kids or employees), scammy “cleaning” apps (Macs don’t need that kind of cleaning), supposed “antivirus” or “anti-adware” apps that don’t detect anything, and so on.

Adware and PUPs are a serious problem on the Mac right now. Although these things are not malware, they are a huge nuisance. Worse, they can create security vulnerabilities that make it more likely for you to get infected with actual malware.

Fallacy: Macs are more secure than Windows

Many years ago, Apple abandoned the old “classic” Mac system in favor of one based on Unix, a mature and security-oriented system. Of course, nothing is ever perfect, and macOS security is certainly far from it. There are plenty of ways to circumvent Mac security. Add to this the fact that security of Windows has improved over the years as well and it becomes difficult to say which system is more secure.

As with other such myths, there’s an element of truth here, though. Macs certainly suffer under a far smaller burden of threats than Windows. Many thousands of new Windows malware variants appear every day, while it’s a busy month in the Mac world if more than one new piece of malware appears. This means that, although there may not be any explicit, major security differences between the two systems, Macs do tend to be statistically safer simply due to the smaller number of threats.

Fact: macOS has built-in anti-malware software

Although this feature is well-hidden from the user, and cannot be turned off, this is true. Apple’s anti-malware software is called XProtect, and it consists of some basic signatures for identifying known malicious apps.

When you try to open an app for the first time, the system will check it against the XProtect signatures. If the app matches one of those signatures, the system won’t allow it to open. Of course, there are a couple problems with XProtect. First, as with any signature-based detection, it can only detect and block malware that Apple has seen before.

More importantly, though, it only detects malware. Since the clear majority of the threats for Macs are adware and PUPs, that leaves a lot that it doesn’t protect against. You shouldn’t rely on XProtect as your sole protection against threats.

Fallacy: Macs don’t need security software

Antivirus software has gotten a bad rap on the Mac over the years. Thanks to historically low incidence of Mac malware, coupled with the system problems that some antivirus programs have been known to cause, Mac users are skittish about installing security software. Making matters worse, Mac “experts” will tell people that they don’t need security software, because macOS contains all the protection they need.

However, the number of Mac users infected by malware and other Mac threats has had exponential growth since 2010, when adware and PUPs weren’t a thing on the Mac yet and when new malware sightings were few and far between.

Clearly, there is an epidemic problem with threats-mostly adware and PUPs-on the Mac, and clearly, the built-in security in macOS is not adequate to deal with this problem. It is becoming increasingly necessary for Mac users to have an additional layer of security, and to have

Source: Malwarebytes Labs