@SpiderWeb
I'm sorry but my English understanding is very low, so I would to be sure that when you say "ridiculously secure" you mean "very secure" ?
Yes. Very secure. The architecture on M1 is hardened so no side channel attacks like Intel.
XProtect is Apple's version of Windows Defender. It gets signature database updates frequently.
Gatekeeper is another built-in feature which only allows trusted and signed programs to run and be installed so no tampering.
Apple is also using some form of checksum to check files have not been tampered with.
Access to the file system for programs is prohibited and can only be granted by an admin in the Settings menu.
Finally the latest M1 with Monterey do not allow anything to run in kernel space unless it's Apple signed.
The only way to get around it is to boot recovery which is password protected and disable secure kernel which is what Kaspersky, Eset, Bitdefender and others are asking users to do. It's unbelievable that someone would want to compromise their hardware security for a little bit of software security.