Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Another Infection Blocked from downloading onto Mac
- Thread starter SoCalReviews
- Start date
- Sort by reaction score
On windows (where one needs only click a dialogue box to confirm system changes) yes i agree entirely. On macOS not so useful as admin password is required for system changes. Most linux systems will not allow root account to log into graphical environment.
Running as a non-admin really doesn't provide a significant increase in security. Anything that's trying to be done to the system will prompt for a password, so if the non-admin is going to be prompted for a password and then enters the credentials of an administrator account, what's the difference?
Ah, ok. I still have a bit to learn on macOS.. it is based on BSD so I was assuming the ACL was a suitable deterrent.
Personally i have not run BSD in a graphical environment as a desktop machine- so i cannot comment on how it handles this matter...
Who remembers the hatred for windows vista when the user account control was first introduced?
I do not understand why whoever in this forum believes it is better for his Mac to run from time to time or even on a permanent basis any AV application, should be extremely careful in his/her statements.
A "Personal Computer" wether using MacOS, Windows or whatever is a "Personal" matter.
If someone prefers to use any AV in a mac it's HIS/HER right.
But after so many violent posts in another thread discussing AV software in macs, attacking those believing in any advantage of using AV in macs, we have come to a point in which people are afraid of even using the "Virus" word.
Therefore all kind of turning around cautious wording is employed in any malware related thread as this one to avoid the pack of mac AV haters who will immediate dismiss the slightest possibility of serious malware in macs and ask in repeated violent posts for proofs of the shere possiblity that such an impossible thing might even exist.
I am truly fed up.
If I DECIDE I prefer to run AV software in my mac it is MY RIGHT.
NOBODY FORCES OTHERS TO DO SO.
If you are convinced it is useless or even causes problems and eats up ressources, then don't use it and be happy.
But for God's sake leave those mac AV users in peace instead of insisting (as was the case in that other thread) how stupid they are in doing so!
and scaring any further thread starters.I was interested in what this thread starter found out and therefore read the posts.
If others find it was just a false positive or whatever then let them simply just skip this thread.
Live and let live others.
Ed
Because it's apparently "heresy" to utter any word or imply in any way that Mac's or the software on them could be vulnerable to malicious infections. Making any post to the contrary of the long time "Macs don't need AV software" narrative makes you the target of severe ridicule and criticism. Your integrity will be questioned. Every word you previously posted will be scrutinized. The more details you explain about your real world experience or your opinion... the more you will be required to defend yourself... word by word.
I do not understand why whoever in this forum believes it is better for his Mac to run from time to time or even on a permanent basis any AV application, should be extremely careful in his/her statements.
A "Personal Computer" wether using MacOS, Windows or whatever is a "Personal" matter.
If someone prefers to use any AV in a mac it's HIS/HER right.
But after so many violent posts in another thread discussing AV software in macs, attacking those believing in any advantage of using AV in macs, we have come to a point in which people are afraid of even using the "Virus" word.
Therefore all kind of turning around cautious wording is employed in any malware related thread as this one to avoid the pack of mac AV haters who will immediate dismiss the slightest possibility of serious malware in macs and ask in repeated violent posts for proofs of the shere possiblity that such an impossible thing might even exist.
I am truly fed up.
If I DECIDE I prefer to run AV software in my mac it is MY RIGHT.
NOBODY FORCES OTHERS TO DO SO.
If you are convinced it is useless or even causes problems and eats up ressources, then don't use it and be happy.
But for God's sake leave those mac AV users in peace instead of insisting (as was the case in that other thread) how stupid they are in doing so!
I was interested in what this thread starter found out and therefore read the posts.
If others find it was just a false positive or whatever then let them simply just skip this thread.
Live and let live others.
Ed
Eventually you will throw your hands in the air when you realize that many of those who are attacking you don't care what you are saying or whether it has any validity or relevance for other users seeking information about Mac AV software or Mac security. The thread will end up as a mud slinging battle of veiled snipes and insults as you try to defend yourself... until finally the mods step in to remove posts... resulting in the end of the discussion.
This doesn't mean that there haven't been some excellent suggestions and helpful contributions in these recent Mac AV and Mac security threads. However, it seems that what usually matters the most for some of the posters is the preservation of long time Mac enthusiast talking points as if they were part of an embedded set of technological religious beliefs.
Last edited:
Pointing out factual inaccuracies, in an attempt to educate- in the year 2019 is apparently triggering for some people.
None of the things described in the last two posts actually happened in this thread.
It is a sad day when reasonable discussion is labelled as attacking. Nobody told anyone not to use the AV. Read the posts again. Enough.
None of the things described in the last two posts actually happened in this thread.
It is a sad day when reasonable discussion is labelled as attacking. Nobody told anyone not to use the AV. Read the posts again. Enough.
Reasonable discussions are of course always welcome.
However people believing in their right to use some sort of AV in their macs were actually described as stupid, not in this thread but in one appeared a short time ago.
Since this thread starter made a reference to that other thread showing he perfectly knew it, I simply said my opinion that nobody should be afraid to use words like Virus when speaking of malware in relation to macOS.
It is a simple fact of liberty of expression and of thought.
I agree that luckily nobody attacked this thread starter but the apologize implied and cautious wording employed in the first initial post triggered my belief to openly declare there should not be any "tabu" related to macs and macOS.
If someone thinks it is better to take measures other consider unnecessary or even contraproductive, he should be free to say what he believes without fearing to be attacked as being stupid.
That was the only purpose of my post even if luckily this thread starter, as you say, was not victim of any of the violent attacks the other thread starter he mentioned was, probably due precisely to the extreme caution he employed when starting this thread to protect himself.
Ed
Last edited:
The egg shells you have to walk on can at times get pretty thin in this forum. When someone posts a perspective outside of the official and traditional Mac technological talking points it often triggers an emotional response. Some deep seated belief system has been threatened. This goes beyond their logic and is related to a user's self identity, status and group identity.
Because certain posters seem to have a loyal fan base it becomes apparent that minds have already been made up. For them it's more important to preserve an old belief system and support the word of their preacher than to allow the free discourse of new knowledge that could lead them to a greater awareness and understanding. If something holds a strong basis in fact then the free expression of that knowledge or information contradictory to it shouldn't be threatening. The truth is not fragile.
[doublepost=1548526013][/doublepost]
I have a question for you.
Let's say you are someone running a business with a small network of Macs and Windows machines and all of those machines are using versions of MS Office and/or other MS Office file compatible programs. The Macs are running VM's with different versions of Windows on them... including outdated versions of Windows (that are required for compatibility with older Windows software). The users in that business office exchange files between the computers including documents, files, PDF's, emails.
How do I help secure ALL of those computers from infections... viruses, malware, etc..?
Last edited:
After reading all you posts attempting to lay fear into the hearts of all mac users (lol, nice try) I can’t help but start to wonder if you work for malwarebytes or some other company thats trying to sell Mac AV software.
I mean, I’m not totally against using AV software, and I have at used it times, but it almost never finds anything, and if it does, I discover its a harmless program that I personally know about and installed.
You just seem to be pushing suspiciously hard on the ‘BE SCARED ALL MAC USERS’ messaging here.
Last edited:
I would be happy to suggest a number of things- which add to the common sense computing habits posted earlier on.
Educate yourself and your staff- this is probably the most important step. Users are the most reliable attack vector. Social engineering, clueless clicking, and dubious browsing habits are how these things cause big problems like ransomware attacks etc.
Keep all windows systems up to date- do not allow windows XP (for example) anywhere on your network. Same for firmwares of network devices. Many companies never upgrade anything until it breaks or is absolutely necessary because of profit margins. If you NEED X version of something ancient- keep it off the network.
Running a vm does not protect you from the VM doing anything bad- EVEN IF you are restoring very regularly (daily) to known clean restore points- If it has access to sensitive data and your network.
Install PFsense or similar firewall onto your network. Something with good intrusion detection also. Learn how to use it- or pay somebody who can do.
Lock down which sites are allowed to be visited. Staff should not be on facebook (for example) at work. A good router software will allow very fine control of which sites are permitted.
Don't allow everyones personal android devices onto your wifi. Or even personal laptops. Work is for work- home is for home.
Use an application firewall on macs which can control both directions of traffic (standard one only controls one way).
Use an ANTIVIRUS software on ALL work computers. Do NOT trust any email attachment ever. Assume malware until proven clean.
Regularly fresh install operating systems.
I could go on all night but i think i have the basics covered for now.
As you can see i have no ideology on if somebody else runs an antivirus on macOS. None of my concern. But i stand by the fact the original infection seems like a false positive after some brief research (as already stated by others). Avast is particularly eager to flag a file as virus by the very nature of its detection methods. Even if real windows trojan- it is the user which then sends it onwards to the windows system- and then, the USER which opens it on an unprotected windows. It cannot do any of this on its own accord.
Educate yourself and your staff- this is probably the most important step. Users are the most reliable attack vector. Social engineering, clueless clicking, and dubious browsing habits are how these things cause big problems like ransomware attacks etc.
Keep all windows systems up to date- do not allow windows XP (for example) anywhere on your network. Same for firmwares of network devices. Many companies never upgrade anything until it breaks or is absolutely necessary because of profit margins. If you NEED X version of something ancient- keep it off the network.
Running a vm does not protect you from the VM doing anything bad- EVEN IF you are restoring very regularly (daily) to known clean restore points- If it has access to sensitive data and your network.
Install PFsense or similar firewall onto your network. Something with good intrusion detection also. Learn how to use it- or pay somebody who can do.
Lock down which sites are allowed to be visited. Staff should not be on facebook (for example) at work. A good router software will allow very fine control of which sites are permitted.
Don't allow everyones personal android devices onto your wifi. Or even personal laptops. Work is for work- home is for home.
Use an application firewall on macs which can control both directions of traffic (standard one only controls one way).
Use an ANTIVIRUS software on ALL work computers. Do NOT trust any email attachment ever. Assume malware until proven clean.
Regularly fresh install operating systems.
I could go on all night but i think i have the basics covered for now.
As you can see i have no ideology on if somebody else runs an antivirus on macOS. None of my concern. But i stand by the fact the original infection seems like a false positive after some brief research (as already stated by others). Avast is particularly eager to flag a file as virus by the very nature of its detection methods. Even if real windows trojan- it is the user which then sends it onwards to the windows system- and then, the USER which opens it on an unprotected windows. It cannot do any of this on its own accord.
The root of the problem has nothing to do with the topic here. The root of the problem is that some folks will lash out and/or accept untruths in order to avoid having to accept that their belief system is inaccurate. <--- That is the problem. Those folks will continue to fight the exact same battles over and again (as we are now seeing in this thread) until they come to a point where they are willing to resolve the real problem: accepting, dealing with and changing a faulty belief system.
I do not understand why whoever in this forum believes it is better for his Mac to run from time to time or even on a permanent basis any AV application, should be extremely careful in his/her statements.
A "Personal Computer" wether using MacOS, Windows or whatever is a "Personal" matter.
If someone prefers to use any AV in a mac it's HIS/HER right.
But after so many violent posts in another thread discussing AV software in macs, attacking those believing in any advantage of using AV in macs, we have come to a point in which people are afraid of even using the "Virus" word.
Therefore all kind of turning around cautious wording is employed in any malware related thread as this one to avoid the pack of mac AV haters who will immediate dismiss the slightest possibility of serious malware in macs and ask in repeated violent posts for proofs of the shere possiblity that such an impossible thing might even exist.
I am truly fed up.
If I DECIDE I prefer to run AV software in my mac it is MY RIGHT.
NOBODY FORCES OTHERS TO DO SO.
If you are convinced it is useless or even causes problems and eats up ressources, then don't use it and be happy.
But for God's sake leave those mac AV users in peace instead of insisting (as was the case in that other thread) how stupid they are in doing so!
I was interested in what this thread starter found out and therefore read the posts.
If others find it was just a false positive or whatever then let them simply just skip this thread.
Live and let live others.
Ed
I'm sorry, I'm not following. You're suggesting there's a 'faulty belief system' at play here. So for those of us who are relatively new to this topic, what exactly is the 'correct; belief system and what is the 'faulty' one? (In your opinion)
P.S. I'm not trying to be combative, I'm just genuinely confused by what exactly you're referring to in your post.
I don't want to derail this thread, so I feel it will suffice to direct others to learn more about cognitive distortions. I feel that identifying and working on cognitive distortions would be the first step toward change. However, most people don't bother with this because they feel it is too much work.. they fail to see the gain.
Uhg, thanks professor (maybe you can send me a personal I-M explaining?
Back to the subject at hand, I’ve been using macs for 33 years, and run several systems myself. Additionally as a side hobby, I work on macs for people in my own office and my girlfriends advertising buisness as welll.
The problems I see and fix on macs are pretty much never virus related. Its hard drive failures, incomalatible software, all the ususal suspects.
On a personal note, I’ve visited my share of porn sites and torrent sites in my day and guess how many viruses I’ve had: Exactly one ... back in 1992 when I was running classic os 7.
So, maybe my experience is totally outlier. But from where I sit, the thread starter is all freaked out about a whole lot of nothin’.
You offered some good suggestions. I am open to alternate viewpoints and differing information as long as the inconvenience doesn't negatively effect work productivity. One reason to run Windows VMs such as XP is for legacy programs that can't run on later Windows versions so not running those older versions kind of defeats the part of the reason for using the VMs to begin with.
Other input is appreciated especially "Use an ANTIVIRUS software on ALL work computers" which I already have done. Although as you already know I have included personal computers and the Windows viruses installed on the Mac also block viruses and malware from getting to the VMs as well since they can scan shared entry points such as the networking interface for email. Using AV software inside the VMs can help as well especially if you want to utilize a different brand of AV software.
What's amazing is the number of infections that have been blocked from getting inside the Windows VMs by the Mac AV software (that includes Windows virus detection). I also don't really notice any slowdown on the Macs. The Mac AV installations were simple and mostly hassle free to manage... Two minutes to install the Mac AV software... Two minutes configuring and then it just has worked trouble free for years and (I have been using free...NOT paid and NOT subscription AV software). The scan settings can be set in the preferences.
In reply to a previous question... NO for the record I don't nor have I ever worked for an AV software or any software company.... The computer industry is not currently part of my business. I simply use and manage my own computers. I still consider myself relatively new to Macs... I consider it an advantage because coming from experience using Win systems you don't take security for granted. I can affirm that Mac systems have definitely been more trouble free than previously used Windows systems... generally more user friendly, cross platform flexible with VM support, good support (from Apple when the Macs were newer), easier to update, less issues with security, etc. .
[doublepost=1548542744][/doublepost]
No, I never have nor do I currently work for any AV software company. I've been posting, reading and replying in this forum on a broad range of Mac related topics for more than six years. I have made my recommendations strong regarding AV software and security for Mac purely from my own past experience and the experience of friends who are professionals in the industry. I wouldn't just waste time posting about it unless I strongly believed that it could benefit other Mac users in this forum. There have been good suggestions in multiple threads from those who don't recommend using AV software as well. It's up to each user to decide for themselves.
Last edited:
Well, based on my past experiences, (33 years of owning countless macs, working on dozens of froends macs with ‘issues’’) ... all I can say is my experience with mac viruses (virtually non existennt) is somehow drastically different from yours.
Good tidings in your bubble of fear and paranoia.
There's no fear or paranoia coming from here. Not a single Mac that I own or that I have configured for myself, a friend or a family member... and not a single Windows VM on any of those Macs has ever been infected.... But all of them have blocked many potential infections... one being the example I posted to start this thread (which was apparently not a MacOS related infection).
As I mentioned in another recent thread I do know of four people who did get infections on the Macs.... Yes Mac and/or Mac software related infections....not Windows or Windows VM infections. I can't speak for you and others that seem to claim they never get Mac infections but I know I am more relaxed knowing I have Mac AVs protecting my Macs and my Windows VMs.
...I don't want to get back into explaining what those infections were and how I know about them. You can find that information in the other recent thread. This thread was supposed to be about people's experiences with Mac security and regarding their own use of broad spectrum Mac AV software.
Last edited:
There are zero meaningful macOS viruses. Any sensible operating system protects against malware by inherent design. Heck even modern windows systems are WAY more safe than in the past, And Microsoft's own protections are now sufficient for the most part.
However, when it comes to customer data in a work environment, paranoia has a place. In this day and age there are many 3rd world hackers making a living out of stealing money or data from 1st world computers. AV does not, in general protect you from those people. Again, the USER is the security hole.
However, when it comes to customer data in a work environment, paranoia has a place. In this day and age there are many 3rd world hackers making a living out of stealing money or data from 1st world computers. AV does not, in general protect you from those people. Again, the USER is the security hole.
Good reading here regarding in-built windows protection:
https://www.dedoimedo.com/computers/windows-10-exploit-protection-guide.html
3rd party solutions are not really needed.
https://www.dedoimedo.com/computers/windows-10-exploit-protection-guide.html
3rd party solutions are not really needed.
Agreed on both points. If you have a personal computer a home you have little/nothing to worry about.
But in big companies in the tech or defense industries, hacking remains a threat.
And as you said, AV software is by and large pointless since it doesn't help you with the latter.
[doublepost=1548590866][/doublepost]
Your AV software shows a few 'threats' because it's casting a super wide net and it's designed to reinforce your decision to buy it (and keep paying for the yearly definitions updates).
If every time you ran it, it showed 'no threats' it wouldn't be long before you stopped paying for their software and virus definitions. But BINGO, you are falling for the age old marketing ploy: Scare you into keep giving them your money.
I would wager pretty much all of those supposed 'threats' it finds are harmless parts of legitimate software that you've installed, and for some reason the certificate got out of date or corrupted, or something else completely benign. Or it's just old code from legacy programs that the AV software doesn't recognize.
Last edited:
And, from the looks of the recent replies, here we are again. Remember the other thread?
OP, how many more times are you going to fight this same battle before recognizing that your belief system needs to change? Never mind, that was a rhetorical question.
Last edited:
His belief wont change. The reason he’s here is that he wants other people to re-assure him that he’s not wasting money on his mac AV software, and share their stories of how thier AV software ‘saved the day’!
(spoiler alert: It is a waste of money)