Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

If additional software is recommended, which one should we buy?


  • Total voters
    7

Luis Ortega

macrumors 65816
Original poster
May 10, 2007
1,186
362
Is antivirus software built in to the Mac or should users buy antivirus software?
How can you test to see if your Mac was infected?
Thanks for any advice.
 
There are some cases where a Mac user might need an "extra level" of protection against [Windows] viruses, malware, adware, crapware, etc.

But this might be applicable mostly to those who use bootcamp/windows emulation, and who regularly exchange files with Windows users.

For "the rest of us", I don't see much need for "pay for" software to protect against viruses. Actually, I don't think there has been a single Mac "virus" found "in the wild" since the debut of OS X back around 2002 or so.

There -is- Mac adware and malware/crapware. To check for this, you can use MalwareBytes.
MB is free to download. It runs in a "trial mode" for several weeks, then will give you the option of:
a. upgrading to a paid version for "real-time" scanning
or
b. "converting" itself into a free version (which you run manually).

Option b... works for me.
 
  • Like
Reactions: Luis Ortega
Thanks for any advice.
First, if you want to do a quick check for malware, the free version of Malwarebytes is a good utility.

Next, I think what you do on an ongoing basis depends on how you use your computer. Some things that would lead me to install an anti-virus package include:
  • Sending or receiving files with Windows users
  • Regular downloading of file types that often are virus vectors, such as .pdf, .jpg, .doc, and .xls .
  • Any business use of your machine
  • Frequent use of public Wi-Fi networks
I've used Sophos for many years. While I can't recall it ever finding a virus, the web address filtering function has saved me from potentially dangerous URL typos and search engine clicks many times.

If you're dead set against installing anti-virus software, you can at least run downloads you think are risky through VirusTotal, assuming you have good upstream bandwidth.

www.virustotal.com

----------

Here are some suggestions for managing privacy and security on your computer:

Level 1 (foundation)
  • Anti-virus (I use Sophos)
  • Anti-malware (I use Malwarebytes)
  • Firefox browser with ad blocking and Javascript blocking add-ons (I use AdBlock Plus and NoScript) for general web browsing. I keep Safari relatively stock and only use it with a very small number of trusted websites.
Level 2 (good to have if you don't mind the convenience vs. security tradeoffs)
  • Little Snitch (monitor outgoing Internet connections, essentially a reverse firewall)
  • RansomWhere (anti-ransomware monitor)
  • SilentKnight (utility for easily checking Apple's own security measures in macOS for updates)
Another action you can take is to set up a non-Admin user account for daily use. Then you only need to log-in as an Administrator when you are actively doing troubleshooting, installations, or maintenance tasks (see: https://forums.macrumors.com/thread...n-administrator-account.2327558/post-30700893).

----------

Have a look at https://forums.macrumors.com/threads/security-protection-on-mac-how.2308465/post-30660294 and https://forums.macrumors.com/thread...curity-suite-for-macosx.2310577/post-30375113 for more info on X-Protect and MRT, Apple's built-n macOS security software.

----------

Finally, my Mac security strategy is centered around risk management, not predictions of bad actors' behavior. I prefer spending some time up front–and money if justified–to minimize the possibility of having to deal with the fallout of an attacker putting viruses or malware on my computer. I view anti-virus and anti-malware software as a form of insurance. Yes, it sucks that I need it but I feel that having it lets me sleep better than not having it.

Also, we are all human and we make mistakes, especially when we are in a rush, distracted, or tired. Relying on constant vigilance as sole protection requires perfection. I don't think any of us can reach that standard very often, especially with something that is constantly changing and morphing.
 
Anti-virus (I use Sophos)
Have they finally fixed the issue (introduced since Big Sur with Sophos version 10.0.x) where local network traffic leads to enormous CPU load and data throughput drops extremely? Thanks!
With the deprecation of kernel extensions they really screwed up.
I currently have only a DNS filter active on my router as Sophos made the Mac unusable.
 
Last edited:
  • Like
Reactions: KaliYoni
Thanks everyone.
I tend to use Safari for browsing on a 2020 intel iMac
I noticed that some screenshots were taking a long time to preview when I tried to view them by pressing the space bar and thought that was unusual. The problem went away but I was left wondering why.
I think I will run Malwarebytes to see if anything pops up.
 
Is antivirus software built in to the Mac or should users buy antivirus software?
How can you test to see if your Mac was infected?
Thanks for any advice.
I don't use any antivirus software.
As stated above, maybe you can experienced malware.
I have experienced only one malware since I moved to Apple (2010) but the machine was running an OS no longer supported (also old web browser version).
If you're really worried, install MalwareBytes.
You can also activate the firewall from the system preferences of your Mac.
 
  • Like
Reactions: Luis Ortega
Have they finally fixed the issue (introduced since Big Sur with Sophos version 10.0.x) where local network traffic leads to enormous CPU load and data throughput drops extremely? Thanks!
With the deprecation of kernel extensions they really screwed up.
I currently have only a DNS filter active on my router as Sophos made the Mac unusable.
Well, I recently upgraded from Mojave to Monterey. I've noticed that scheduled scans have become a lot slower. Since Ventura is coming out soon, I haven't dug around much to figure out the cause...but based on your comment and what I'm seeing it sure looks like the local network traffic problem hasn't been fixed.

On the other hand, I haven't noticed any effects on my machine (yet?) if Sophos isn't scanning.

Now maybe I'll look into what's happening more.

----------
ETA: I'm looking at Activity Monitor right now (4.2 GHz i7 iMac 16GB RAM). I have Mail and the DuckDuckGo browser open, as well as the persistent modules of Little Snitch, Sophos Home, and a few other, very small, security/privacy utilities. It reports the CPU around 95% idle, with Memory Pressure solidly and consistently in the green.
 
Last edited:
  • Like
Reactions: arw
...but based on your comment and what I'm seeing it sure looks like the local network traffic problem hasn't been fixed.

On the other hand, I haven't noticed any effects on my machine (yet?) if Sophos isn't scanning.

Now maybe I'll look into what's happening more.
That's a real shame...
Same for me: if there is no traffic, Sophos doesn't use any noteworthy resources (that's what I always liked about it)
It would be great if s.o. could finally get to the bottom of if.
I have it installed on all my Windows machines and there CPU is only mildly affected by local network traffic.
 
I wasn‘t aware until recently that since March 2022 macOS itself provides an advanced malware detection tool called XProtect Remediator. From Monterey down to Catalina.
Here‘s a good write-up:
As my Windows machines already run Sophos, I now feel more confident with Apple‘s built-in solution only (+ AdGuard DNS).
 
Last edited:
  • Like
Reactions: philippe2014
This is question keeps coming up. Do you need antivirus for your MacBook Pro or is the built in security good enough? Thought?
 
This is question keeps coming up. Do you need antivirus for your MacBook Pro or is the built in security good enough? Thought?

Generally I'd say no. Be careful about what you're opening, don't subscribe to crap or click on random popups (which you should be mainly free of anyway if you've installed an adblocker, which you should. I've personally used and can recommend Adguard on iOS and Mac over the years but there are many good ones) and definitely, definitely think about about anything you do that requires you to elevate to admin
 
Recently I've been experiencing tabs opening on Safari without any action on my part. The tabs seemed to be opening random pages and websites. I had no software installed to detect or protect against virus or malware; at some point months ago I had removed MalwareBytes, probably thinking that it was not needed and not having run across anything being detected when it had scanned my system.

Given the Safari problem I decided to install MalwareBytes again and see what it came up with. Sure enough it identified multiple malware files and one adware file, and removed them (quarantined them). Since that time I've had no further issues with Safari.

I have no idea where the malware came from but it does demonstrate, at least to my satisfaction, that these files do find there way into a Mac OS system from time to time, and with this recent experience I'll keep MalwareBytes installed and running regularly.

Late 2014 iMac running macOS Big Sur 11.7 with Safari 16.0. (Still running my reliable old iMac and hoping for a new large screen iMac product at some point from Apple).
 
  • Like
Reactions: hajime
Generally I'd say no. Be careful about what you're opening, don't subscribe to crap or click on random popups (which you should be mainly free of anyway if you've installed an adblocker, which you should. I've personally used and can recommend Adguard on iOS and Mac over the years but there are many good ones) and definitely, definitely think about about anything you do that requires you to elevate to admin
Second this. Adblock like AdGuard is enough. I have been using various Mac since 2009, with my family members all using Mac (include iMac and MacBook for my kids, teenagers, parents 70+ years old), without antivirus. Malware files can be ”infected” (copied) to your Mac (when you visit malicious sites) but it won’t do anything harm on Mac. Keep calm.
 
In every forum this question awakens the Mac "macho" users who never can get a virus on their Mac because it has never happened before. - Then there is the recommendation to use the free Malware bytes to check for virus. And the linguistic distinction between "virus" and "malware".

But outside the forums there are other opinions and views on this subject. And since Malwarebytes is referenced in the suggestions it can be a good idea to actually read what Malwarebytes themselves say about this subject. Here is the link:


We must form out own opinion on this. Like when we decide to buy/not buy a fire insurance or using/not using the seat belt in the car. - Does the fact that we never previously really needed them guarantee that we won't need them tomorrow?
 
web

Apple already has several anti-malware tools baked into MacOS. MacOS does not auto run executable files by default.

So I would say that for most people an antivirus software is simply not needed. This is not to say that anti-malware tools are useless. Computer security is about layers of protection as any dedicated hacker can compromise any system connected to the internet.

So the more layers of security you have the harder it is for a nefarious actor to gain access and the hope is they will give up and go after a less secure system.

Personally I would not worry about it too much. If you don't install anything from a Pop Up window or email then you should be fine. If you want to be sure then run a free scanning tool every so often. And if you want to be totally sure then buy a Subscription to a service but understand that even if you have a anti-malware subscription it doesn't make your computer immune and you still need to use best practices.
 
Hi, Silicon Mac have several security features which is one of the selling points for Mac. However, recently there is an increasing number of cyber attacks targeting the Mac. Are the security features which came with Silicon Mac sufficient to counter the attacks? In case of buying security software to add an extra layer of protection, which product is recommended?
 
Next, I think what you do on an ongoing basis depends on how you use your computer. Some things that would lead me to install an anti-virus package include:
  • Sending or receiving files with Windows users
  • Regular downloading of file types that often are virus vectors, such as .pdf, .jpg, .doc, and .xls .
  • Any business use of your machine
  • Frequent use of public Wi-Fi networks
I've used Sophos for many years. While I can't recall it ever finding a virus, the web address filtering function has saved me from potentially dangerous URL typos and search engine clicks many times.


Windows is my main work machine so most of these fit my use case.

What is the best software in dealing with potentially dangerous URL typos? Sophos?
Even under MacOS, quite often I get redirected to dangerous sites because of URL typos.
 
Last edited:
Windows is my main work machine so most of these fit my use case.

What is the best software in dealing with potentially dangerous URL typos? Sophos?
Even under MacOS, quite often I get redirected to dangerous sites because of URL typos.


I saw this even on my jog inside the US military ALL the time on Military Email to point unless I requested many times that they were on intent and no the secure email site! Baby boomers seem to be the worst at doing this!
 
Windows is my main work machine so most of these fit my use case.

What is the best software in dealing with potentially dangerous URL typos? Sophos?
Even under MacOS, quite often I get redirected to dangerous sites because of URL typos.

not sure if it's the best way, but i'm using:

1. the internal phishing / dubious sites protection of Firefox, though most browsers should have similar features
2. ublock origin blocklists for malicious sites
3. Quad9 as my main DNS resolver, which also has blacklists of known malicious sites, but again, other resolvers can do this too

of course this is not 100% secure too, as there is no guarantee that all the malicious sites have been reported (yet). maybe you're the chosen one to be the first to stumble upon a new one.
 
ALL the time on Military Email to point unless I requested many times that they were on intent and no the secure email site!

Don't understand what you are saying here. Requested what? What does "they were on intent" mean? "no the secure email site!"
 
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.