It’s true that malware is less common on Macs than on Windows or Android. But that doesn’t mean Macs are inherently more secure, or that Mac users should take their security for granted.
Case in point: Apple’s own employees had their Macs compromised by malware in February of last year (the same attack also victimized Mac users at Microsoft and Facebook). If Apple employees’ Macs aren’t malware-proof, you can bet yours isn’t either.
More recently, our SophosLabs researchers discovered a Trojan attack disguised as an “undelivered courier item” notification in emails targeting Mac users. This malware, identified by Sophos as OSX/LaoShu-A, digs around in your Mac and can send any of your files back to a server operated by the attackers.
So, Macs aren’t immune to malware. But there are some easy steps you can take to improve your security on Mac computers. Here are four easy ways you can improve your Mac security.
1. Remove Java from your Mac unless you absolutely need it
The attack last year on Apple’s Mac users exploited a vulnerability in Java (which Apple belatedly fixed only after the attack). If you can’t eliminate Java completely, at least turn it off in your browser, where most of the worst Java threats are.
2. Keep your software patched with up-to-date security fixes
Hackers find plenty of victims by exploiting known vulnerabilities that could have been halted by a security patch. If you aren’t updating your Mac with the latest security fixes, this is a friendly reminder to do it when prompted.
3. Set GateKeeper to only run digitally-signed apps from the Mac App Store
As we reported in our Security Threat Report 2014, malware authors have figured out how to digitally sign applications with a phony Developer ID to get around GateKeeper security. However, using GateKeeper settings to warn you when you’re attempting to download an unsigned app, or if the app is not from the App Store, adds an extra layer of security. Apple has thus far been very good at keeping malicious apps out of its stores for Mac and iOS apps (iPhones, iPads).
4. Run antivirus software on your Macs
If you’re running a Mac without antivirus, you should download the free Sophos Antivirus for Mac Home Edition.
Mac malware and Mac security tips
If you’re interested in learning more about the evolution of Mac malware and the types of attacks we’re seeing against OS X, download our Security Threat Report 2014. It’s got the latest research from our SophosLabs experts, and includes links to other resources like whitepapers and videos to prepare you for all the threats we’ll face this year.
Plus, we’ve got another Five Tips for Better Mac Security posted at our sister blog, Naked Security.
Protecting Macs | Mac Virus
[…] Further to the LaoShu malware previously flagged by Sophos – as I reported here recently – John Zorabedian offers Four easy ways to protect your Mac from malware. […]
What is the most secure OS? | Inside Internet Security
[…] Here’s a nice write up on “Four easy ways to protect your Mac from malware,” which is a question I get from time to […]
Review: Sophos Antivirus for Mac protects against malware, doesn’t impact performance | Sophos Blog
[…] think malware is only a problem for Windows PCs, and that you don’t need an antivirus. As we’ve explained previously, this is a myth. Naturally, an antivirus company would say such a thing. But independent reviewers […]
What’s coming in Sophos UTM Accelerated (9.2): #2 – Smarter web user authentication | Sophos Blog
[…] in the network stream, it can distinguish a Windows PC from an iPad or an Android from a Mac. You can then use this information to specify different authentication options for each type of […]
Launching the World of Warbiking tour! First stop: San Francisco | Sophos Blog
[…] and web browser patched with the latest security updates at all times (that goes for you too, Mac users). With a few extra command line arguments, it would have been trivial to attack nearly everyone in […]
The Mac-daddy of Apples
[…] The best way to protect your Mac […]