Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Software
Security Apps
Other security for Windows, Mac, Linux
macOS needs an AV?
Message
<blockquote data-quote="MacDefender" data-source="post: 946204" data-attributes="member: 83059"><p>I personally don't think you do. macOS's built in protections have gotten pretty good over the years. If you have a recent macOS like Big Sur, there's built in things like:</p><ul> <li data-xf-list-type="ul">Every software you download gets checked against a live internet database of notarized apps (apps that Apple has a copy of and has determined isn't harmful), and those can be live-revoked should they be deemed malicious</li> <li data-xf-list-type="ul">"behavior blocking" style behavior is built in to the OS. Accessing sensitive folders like your documents, downloads, photo library, etc all trigger permission prompts from the OS by default</li> <li data-xf-list-type="ul">macOS has a modest built in antivirus (XProtect and MRT), and they get regularly pushed updates in the background and will check your system for the most prevalent infections as well as running early in bootup to guard against malicious startup services</li> <li data-xf-list-type="ul">The OS itself is now completely read-only and "sealed" with an Apple signature, and that's enforced at boot up. Unless you downgrade your security, attackers cannot modify any of your OS bits.</li> <li data-xf-list-type="ul">Critical OS services like the antimalware are protected against even the root user and it cannot be defeated, especially not in a way that survives rebooting the machine.</li> </ul><p>With all of that, I think the main threat you'll hit is PUA/annoyanceware. Things that aren't strictly illegal or harmful like search toolbars / homepage hijackers / ads, that big companies are afraid to block because of all the legal issues around a company of Apple's size declaring war on an industry. If you do a lot of that, then maybe you want something.</p><p></p><p>MalwareBytes I think is most useful on the Mac because they take such an aggressive stance against PUA. I don't like their products for Windows because IMO the protection against true malware and ransomware is weaker than the combination. </p><p></p><p>In general I do not recommend realtime scanners on macOS. They are better since Big Sur because they use a new "system extensions" API that no longer requires a hacky kernel driver (and downgrading your security). However, they still add noticeable overhead, as AV software on macOS doesn't do all the clever tricks that Windows AV Software do in terms of skipping repeatedly scanning things or skipping system files. Plus, again, because the OS's built-in protections are great compared to Windows. You don't have that problem where a malicious software running without realtime protection can find a way to hide and remain resident and block future attempts to clean/remove it.</p><p></p><p>If you have annoyanceware on your system, you'll realize it, and at that point you might want to grab a scanner for it. Otherwise, IMO it's a waste of money, system resources, and time.</p></blockquote><p></p>
[QUOTE="MacDefender, post: 946204, member: 83059"] I personally don't think you do. macOS's built in protections have gotten pretty good over the years. If you have a recent macOS like Big Sur, there's built in things like: [LIST] [*]Every software you download gets checked against a live internet database of notarized apps (apps that Apple has a copy of and has determined isn't harmful), and those can be live-revoked should they be deemed malicious [*]"behavior blocking" style behavior is built in to the OS. Accessing sensitive folders like your documents, downloads, photo library, etc all trigger permission prompts from the OS by default [*]macOS has a modest built in antivirus (XProtect and MRT), and they get regularly pushed updates in the background and will check your system for the most prevalent infections as well as running early in bootup to guard against malicious startup services [*]The OS itself is now completely read-only and "sealed" with an Apple signature, and that's enforced at boot up. Unless you downgrade your security, attackers cannot modify any of your OS bits. [*]Critical OS services like the antimalware are protected against even the root user and it cannot be defeated, especially not in a way that survives rebooting the machine. [/LIST] With all of that, I think the main threat you'll hit is PUA/annoyanceware. Things that aren't strictly illegal or harmful like search toolbars / homepage hijackers / ads, that big companies are afraid to block because of all the legal issues around a company of Apple's size declaring war on an industry. If you do a lot of that, then maybe you want something. MalwareBytes I think is most useful on the Mac because they take such an aggressive stance against PUA. I don't like their products for Windows because IMO the protection against true malware and ransomware is weaker than the combination. In general I do not recommend realtime scanners on macOS. They are better since Big Sur because they use a new "system extensions" API that no longer requires a hacky kernel driver (and downgrading your security). However, they still add noticeable overhead, as AV software on macOS doesn't do all the clever tricks that Windows AV Software do in terms of skipping repeatedly scanning things or skipping system files. Plus, again, because the OS's built-in protections are great compared to Windows. You don't have that problem where a malicious software running without realtime protection can find a way to hide and remain resident and block future attempts to clean/remove it. If you have annoyanceware on your system, you'll realize it, and at that point you might want to grab a scanner for it. Otherwise, IMO it's a waste of money, system resources, and time. [/QUOTE]
Insert quotes…
Verification
Post reply
Top