Mac OS X Now Updates Malware Definitions Daily

Discussion in 'Mac Blog Discussion' started by MacRumors, May 31, 2011.

  1. macrumors bot

    MacRumors

    Joined:
    Apr 12, 2001
    #1
    [​IMG]


    [​IMG]

    Apple has detailed what changes have been made in the latest Mac OS X Snow Leopard Security update that was released earlier today. Besides adding specific detection for the "Mac Defender" malware, Apple has added a daily update to this database.
    This means that Apple will be able to push out profiles for newly found malware without requiring a new software update.

    Users can opt-out of this daily download if they choose.

    Article Link: Mac OS X Now Updates Malware Definitions Daily
     
  2. macrumors G4

    flopticalcube

    Joined:
    Sep 7, 2006
    Location:
    In the velcro closure of America's Hat
    #2
    Hello Microsoft Security Essentials ala Apple.
     
  3. macrumors 603

    firestarter

    Joined:
    Dec 31, 2002
    Location:
    Green and pleasant land
    #3
    They clearly had this waiting in the wings. Good move, Apple.
     
  4. macrumors demi-god

    Spanky Deluxe

    Joined:
    Mar 17, 2005
    Location:
    London, UK
    #4
    Ah so that's what the new request was that Little Snitch picked up on post updating. Great to know that Apple is staying on top of things.
     
  5. macrumors newbie

    Joined:
    May 31, 2011
    Location:
    Northern Germany
    #5
    does it work with non-admin accounts?

    do you think this will be failsafe when you're using a standard-account?
    normal system-updates do not work when you're no admin.
    (even though you can activate it in system prefs)
     
  6. NAG
    macrumors 68030

    NAG

    Joined:
    Aug 6, 2003
    Location:
    /usr/local/apps/nag
    #6
    About time. Any computer that isn't locked down like iOS needs to have something like this no matter how unlikely it is your computer will get the malware.
     
  7. macrumors G3

    roadbloc

    Joined:
    Aug 24, 2009
    Location:
    UK
    #7
    OS X now has an inbuilt antivirus. The day has come.
     
  8. macrumors 6502a

    Joined:
    Aug 3, 2010
    #8
    I never expected this from Apple.

    I completely expected a "OK, we'll take this one but this is really rare and Macs don't really catch much malware".

    That Apple is here to help with malware from the first known wide-spread case is pretty much unprecedented in the industry as far as I know. I mean as an OS vendor, and as for protecting their own OS. Good job! And thanks for not being ignorant about it. :)
     
  9. macrumors 603

    Joined:
    Sep 19, 2003
    #9
    It's had anti-malware support since 10.6.0 This just makes updating it automatic.
     
  10. NAG
    macrumors 68030

    NAG

    Joined:
    Aug 6, 2003
    Location:
    /usr/local/apps/nag
    #10
    The auto updating kind of makes the feature though since it allows Apple to decouple immediate security threats from their normal update cycle.
     
  11. frankieboy, May 31, 2011
    Last edited: May 31, 2011

    macrumors regular

    Joined:
    Jun 29, 2009
    #11
    I don't think the Safe Downloads List feature works with Google Chrome, because I don't think Google Chrome implements the file quarantine metadata attribute.

    I just downloaded sArchiver with Chrome 12.0.742.68 beta. I got no quarantine dialog when I unzipped it or when I launched it.

    I refer to the feature than can be toggled on/off in System Preferences > Security > General tab after installing Security Update 2011-003.

    I hope I am wrong.
     
  12. macrumors 65816

    Dammit Cubs

    Joined:
    Jul 31, 2007
    #12
    And so it begins .......
     
  13. macrumors member

    Joined:
    Jan 31, 2011
    #13
    A Jail/Sandbox would make Trojans a none issue. Along with an out going firewall to stop phoning home. Finally only allowing applications to be executable/ran from specific directories. Now reason I should be able to run an app that's installed in another location besides the Applications folder. Unix apps that are installed in bin etc... Would need admin rights/sudo to be installed in the first place.
     
  14. macrumors 6502

    Joined:
    Jul 22, 2008
    Location:
    UK
    #14
    The basis for malware detection and removal has been there since the release of Snow Leopard, following some moderately wide-spread malware (this is not the first case by any means). It's not unprecedented, Windows has a 'Malicious Software Removal Tool' which receives regular updates along with Windows Defender. Nevertheless, still a good move from Apple
     
  15. macrumors regular

    mcdermd

    Joined:
    Mar 17, 2004
    #15
    And yet they keep "Open 'safe' files" around in Safari. Get rid of that already.
     
  16. NAG
    macrumors 68030

    NAG

    Joined:
    Aug 6, 2003
    Location:
    /usr/local/apps/nag
    #16
    This would require Apple to implement a better installer than double click a DMG file and drag the app out of it. I have seen so many people never do that last step. It really is a failing of OS X to rely on DMGs like that (the good apps have a first run check to make sure you actually installed it in the Applications folder, which should be a default feature of the OS).
     
  17. macrumors 65816

    irishgrizzly

    Joined:
    May 15, 2006
    #17
    Where is this option?
     
  18. macrumors 6502

    Joined:
    Oct 26, 2010
    #18
    [​IMG]
     
  19. macrumors regular

    Joined:
    Jun 29, 2009
    #19
    See System Preferences > security > General tab.
     
  20. macrumors 6502

    Joined:
    Jul 22, 2008
    Location:
    UK
    #20
    It's shown in the linked article http://support.apple.com/kb/HT4651

    It's in the Security Preferences Pane - although I can't think of a single good reason to change it from the default setting.
     
  21. macrumors 68000

    rorschach

    Joined:
    Jul 27, 2003
    #21
    Yeah, just have a dialog when the user tries to run an app from a DMG that asks if they want to copy it to the Applications folder.
     
  22. macrumors 68000

    lewis82

    Joined:
    Aug 26, 2009
    Location:
    Totalitarian Republic of Northlandia
    #22
    Does this only work while using Safari (the main threat in the whole affair)? If I use Firefox, not only because it's better but also safer, I'm not protected? Or does it scan all .dmg/.mpkg files on opening?
     
  23. NAG
    macrumors 68030

    NAG

    Joined:
    Aug 6, 2003
    Location:
    /usr/local/apps/nag
    #23
    This is at a system level. The only thing you have to worry about as far as browsers is that you turn off opening "safe" downloads automatically because there is no such thing as a safe download as far as the internet is concerned.
     
  24. MacMan86, May 31, 2011
    Last edited: May 31, 2011

    macrumors 6502

    Joined:
    Jul 22, 2008
    Location:
    UK
    #24
    Yes, of the browsers, it's only Safari:

    http://support.apple.com/kb/HT4651

    EDIT: Looking back at some of the original info on this (http://www.theregister.co.uk/2009/08/25/snow_leopard_malware_protection/) it looks like Firefox is included in the select number of applications
     
  25. macrumors 6502a

    Joined:
    Feb 27, 2011
    #25
    Awesome! Now I can let my father buy a Mac in peace.
     

Share This Page