Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
As usual, buy whenever you need a new Mac or want a new Mac. There is no real reason to wait unless you believe the current models won't meet your needs.

But I'm wondering if the M2 will be a significant leap over the M1.
 
it’s Intel that tries to get people afraid to buy M1s

It comes in both flavors. Intel and M1

silver-sparrow-overview-640x320.jpg
 
Any new CPU architecture and code contain a higher number of bugs so more vulnerabilities. That's why the military and security conscious organizations use mature (old as heck) systems for anything security critical.
This is not attacking any vulnerability in Apple Silicon (or in Intel for that matter). The researchers don't know the exact delivery method but it is targeting all macs regardless of their processors and is pretty clearly a trojan. The researchers speculate that it gets in by users doing something dumb like installing something a shady website prompts them to do. The vulnerability here is in people not in computer architecture.
The only processor specific thing this malware does happens once it's actually installed and is in the system. At the moment all the Apple Silicon specific part does is install a placeholder "hello world" type app (the intel version runs a similar intel placeholder app).

All in all I don't really understand the hype about it. I am no expert but what is described of the malware is extremely primitive, easy to spot and delete by hand by a regular user. It's not exactly hidden in any clever way (in fact, not hidden at all). The launch agent it installs is a plain text file sitting in the same place where all user agents sit (~/library/launchagents). You can see exactly what it does simply by quicklooking it. same with the shell scripts it installs. and you can defang the whole thing by just trashing the launch agent and restarting. Again, I am no expert but that doesn't sound sophisticated at all. I mean, is there any Windows malware that basically just puts something on your desktop and which you can kill simply by trashing it?
 
Last edited:
In my opinion the question should be : Where are these Intel chips made ? In US or Ireland or Middle East ? Sorry Intel , but I would only use the Intel chips made in US or Ireland to avoid custom made wicked malware & backdoors . Let's hope the new team will correct the problems fast .What happened at Intel since at least 2016 is very sad , but $25 billion were invested & spended from 2016 to 2020 & is very little to show for .... Oh yes, backdoored & malware loaded chips , sorry !
 
Does anyone know if Malwarebytes works on M1 Macs?
Works great, I've been running it for a month now. If you're trying any of the newer betas you might need to re-download after you've done your update though. It runs as an Intel process though, so it's not M1 ported currently.
 
Last edited:
  • Like
Reactions: theapplepie
Wow, two malware threats can run natively on M1 processor.
Remind me, how many can run on Intel?

Anyway, surely this is more of an OS weakness than a processor issue, no?

EDIT: I seem to have accumulated 3 disagreements with my statement above.
I am now curious. @KeithBN @shadowbird423 and @miq how do you suggest code can be run without passing through the OS first? I accept that I can be wrong. Care to explain though?
You overgeneralized in your original comment. This is what the media does. Normally, I wouldn't bother giving a thumbs down for such a comment, even if you are wrong. But you're asking, so I'll answer with a question: Are you a media hack? I mean, hey...you overgeneralized like one, so it's a fair question. :)

Bottom line how is this installed? Does it require the user to download, bypass gatekeeper, provide admin credentials? Is so then its nothing interesting.
Yes, I've heard it said that 96% of all Windows hacks, hijacks, and corruptions happen because the person is using an admin account and they responded to allow some software to run.
you wanna know the future?
ALL BROWSER BASED APPS. The real CPU horsepower will be in the cloud.
It already is.
Our computers will be nothing more than DUMB terminals.
They already are.
So quit bashing Intel Processors for being slow.
Your M1 or M2 horsepower wont matter in the future of computing where everything powerful is in the cloud.
Oh, and there you were doing so well!

So basically back to the Mainframe style days.
Yep, just what I was thinking.
So an article from CNN? It's more likely to be fake than not. So please explain to me why I SHOULD read it?
 
You overgeneralized in your original comment. This is what the media does. Normally, I wouldn't bother giving a thumbs down for such a comment, even if you are wrong. But you're asking, so I'll answer with a question: Are you a media hack? I mean, hey...you overgeneralized like one, so it's a fair question. :)


Yes, I've heard it said that 96% of all Windows hacks, hijacks, and corruptions happen because the person is using an admin account and they responded to allow some software to run.

It already is.

They already are.

Oh, and there you were doing so well!


Yep, just what I was thinking.

So an article from CNN? It's more likely to be fake than not. So please explain to me why I SHOULD read it?
Anything from the Communist News Network is 100 percent fake..
 
" so the exact threat that the malware poses remains a mystery."- What day is it again that Skynet is supposed to become self-aware?
 
you wanna know the future?
ALL BROWSER BASED APPS. The real CPU horsepower will be in the cloud.
Our computers will be nothing more than DUMB terminals.
Meh

No. That will be (is already) an option but not the norm. Companies make a lot of money selling you horsepower, storage and accessories on the user end. Remove that and the global stock market would drop significantly and growth would be hard and slow to recover, even if it was gradually implemented.

Putting all apps and users in the cloud runs into scalability problems that are extremely costly for companies. They would have to upgrade more often than they already do because advances in gaming and creative applications mean they need more and more processing power.

And the main bottleneck isn’t the servers, it’s the telecoms and energy infrastructure.

Can you imagine trying to use these cloud apps last week if you were in Texas or anywhere else with similar problems? They have black outs in many parts of the world. If you live in a comfy stable rich part of the world you won’t notice how unstable energy and comms are for many many cities elsewhere.
 
Nothing more than fear mongering. These are just existing Mac malware/adware exploits that are being ported to run on ARM. So, what? What would you expect? All this crap comes from Windows/x86/PCs to begin with. And then MR gives is front page status? It's the same stuff that ALREADY EXISTS on other Macs and Windows PCs, for crying out loud! Click bait. Boo.

Don't be _too_ quick to judge. The first virus to circulate "in the wild" was actually Elk Cloner for early Apple systems.


😆
 
OMG, do not tell me that you are one of those who believe that their Mac is immune.

I believe my Mac is _secure_, yes, because I'm not an oblivious user that clicks random stuff. The user will always be the weak link.

Nothing is immune, but computer systems can be secure, when treated as such.
 
Definitely appears to be a proof of concept. Just wondering why it announces itself once installed? Guess they’re measuring success by mentions of it being discovered rather than any “phone home” behavior.

I checked three of my macs for the directories in Library, and they aren't there so I haven't been infected yet, but I also aren't on FB, or Twitter anymore either. I'm sure people can be infected through other means, but those are likely the most common. I remember discovering one of my early macs had the Scores virus. I was a mac club librarian at the time. Who knows where I picked it up, which disk out of thousands. The good old days. Scores did essentially nothing.
 
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.