Battle What is the best protection for my M1 MacBook Air ?

[JB007]

Hello,
I recently purchased a M1 MacBook Air.
It is my first Mac and I hope you can help me to choose the best protection for it.

 

[rain2reign]

I have no doubt that the usual duo, being Bitdefender and Kaspersky, would do a good job. Though, I'd have to cast my vote for Intego. Sole focus being the Apple eco-system and have been doing so successfully, since 1997. Are as far as I know also GDPR-compliant, like the other two mentioned.

Note: their windows compatibility is a fairly recent feature, since September 2020. Which you pay 10 Euros more for in their store.

 

[Balrog]

For the Mac i go with Malwarebytes, Bitdefender or Eset (in that order).

 

[The_King]

The Best protection would be Bitdefender.

The best Mac antivirus software in 2021

Believe or not, your Apple machine needs some of the best Mac antivirus software

www.tomsguide.com

Best Mac M1 Antivirus Software

The sneakier virus and craftier hackers have contradicted the deep-rooted belief that the Mac M1 is immune to spyware and ransomware. Today, the Mac M1 needs an antivirus. But, before covering the best Mac M1 antivirus software, what's Mac M1's Chip? Let's see!Mac M1's chip refers to the first...

techsviewer.com

Best Mac antivirus software of 2021

Free and premium security tools to protect your Apple device

www.techradar.com

 

[enaph]

None.
macOS has enough security features built-in which utilized properly will keep your data secure.
There are few settings you should enable right after logging in:

- turn on firewall
- turn on automatic updates
- turn on FileVault
- setup backup with Time Machine
- password protect screen saver
- disable automatic login and remote access
- allow only installs from AppStore and identified developers
- use password manager

XProtect (macOS built-in anti-malware) is enabled by default and you don't need to configure it.

 

[ForgottenSeer 85179]

As pablozi already wrote, you don't need any and using Third Party AV make it only worse.
Harden your system if you want enhanced security beside the very strong stock one.

 

[Ink]

None

Sure Mac isn't Windows, but it's not immune to viruses either. However if you treat Mac like Windows, then you'll fall into the same pit.

Follow the steps by @pablozi.

Link: Set up users, guests, and groups on Mac

• Administrator: An administrator can add and manage other users, install apps, and change settings. The new user you create when you first set up your Mac is an administrator. Your Mac can have multiple administrators. You can create new ones, and convert standard users to administrators.
  • Don’t set up automatic login for an administrator. If you do, someone could simply restart your Mac and gain access with administrator privileges. To keep your Mac secure, don’t share administrator names and passwords.
• Standard: Standard users are set up by an administrator. Standard users can install apps and change their own settings, but can’t add other users or change other users’ settings.

For more information about the options for each type of user, click the Help button in the lower-left corner of the dialog.

 

[enaph]

You might also take a look at the below video explaining which settings and why you should change them to increase security.
I also highly recommend this channel as you you can learn a lot from it.

 

[enaph]

@JB007 one more for you.
This one was recommended to me on Reddit when I first got my hands on my MacBook:

 

[rain2reign]

@JB007 one more for you.
This one was recommended to me on Reddit when I first got my hands on my MacBook:

Sounds like common sense to me.

I recommend the same methodology to people all the time for Windows and Unix. Only add stuff, if you actually need it. Or in this case, if you find the built-in security not adequate for your uses (use-case dependent), you can always switch. In the end Apple tries its best, but is still not a security-malware focused company. Go with what you have and add stuff only if you need it.

 

[ForgottenSeer 85179]

I add some stuff to my new MacOS Hardening:

GitHub - beerisgood/macOS_Hardening: a collection about macOS

a collection about macOS. Contribute to beerisgood/macOS_Hardening development by creating an account on GitHub.

github.com

It's still in progress

 

[JB007]

Hello,
Thanks for all your advices.
Let's go, I will go for none but I'm a bit worried when I look at this forum: https://malwaretips.com/forums/mac-malware-removal-help-support.183/:confused:

 

[JB007]

Hello,
I'm wondering if AdGuard for Mac is useful

 

[ForgottenSeer 85179]

Hello,
I'm wondering if AdGuard for Mac is useful

For blocking Ads for sure, but not for anti-fingerprinting.

 

[JB007]

For blocking Ads for sure, but not for anti-fingerprinting.

Thanks @SecurityNightmares
I will install it ASAP

 

[enaph]

Thanks @SecurityNightmares
I will install it ASAP

Talking from my own experience: you might be disappointed with Adguard's performance on machine with M1 chip because there's no native version yet so it will be running through Rosetta 2.
Instead of using Adguard you can better go for NextDNS using macOS profile: NextDNS - Apple Configuration Profile

 

[Ink]

Why not use Adguard Adblocker for Safari, or other installed browsers?

The more system-dependant apps you install, the higher risk of lowering the responsiveness and core performance. Not to mention many apps may not yet be native to the M1 chip.

I'm a bit worried when I look at this forum: https://malwaretips.com/forums/mac-malware-removal-help-support.183/

The risk is very low compared to Windows. Just look at the numbers...

 

[ForgottenSeer 85179]

Thanks @SecurityNightmares
I will install it ASAP

I don't say that i recommend this program.
Personally, i would only use DNS wide solution (NextDNS) like pablozi already post.
Look at my guide: Tutorial - NextDNS: a DoH/ DoT guide

 

[MacDefender]

Note that in macOS Big Sur, the so called built-in antivirus (XProtect and Malware Removal Tool) are significantly revamped, and use YARA rules for signatures instead of dumbly hardcoded hashes. Furthermore, Apple's GateKeeper is cloud-connected with both certificate and application level blocking, much like SmartScreen or SONAR. I agree with the others that with DNS-level and ad blocker level hardening to try to crack down on malvertising, you should be fine without a third party AV software.

Currently third party AVs rely heavily on custom hooks via kernel extensions (kexts), and Apple is trying to deprecate those. In fact right now on M1 to install kernel extensions you have to downgrade your secure boot, which in my opinion puts your system into a worse security state than without AV. That's not the fault of any third party AV, but the shortcoming of the APIs Apple has provided for implementing antivirus software.

Apple has a fast track record of responding to in the wild threats. Usually the same day that an article comes out about a piece of malware, Apple has already blocked it.

 

[JB007]

What are the best ad blockers extensions for Safari ?