Do Macs need antivirus?
On September 26, 2016, Apple published its first-ever support article on malware. Why is it a notable event? Because for quite a while, Macs have been considered immune to it. Just for the sake of the experiment, try asking Mac users this question, “do Macs need antivirus software?”. I bet most of them will reply with, “macOS doesn’t get viruses, so there’s no need to have one.” Sadly, that’s not quite true. Malware is now a Mac problem, too.
- According to the Objective-by-the-Sea malware conference, around 20% of Macs are infected with PUPs or potentially unwanted programs.
While there’s been no severe outbreak or epidemic of Mac viruses in the wild, macOS has been hit by malware quite a few times. Just recently, Meltdown and Spectre malware exploited flaws in Intel chips and affected Macs.
Malware vs. virus: Is there a difference?
Now, you’re probably confused by why we use malware and viruses interchangeably here. So let’s clear that out once and for all.
Technically, a virus is a bit of code that infects your system and can cause all sorts of havoc. Malware is a much broader term used to describe anything malicious that finds its way onto your Mac — from apps you download to links you click that steal data and cause all sorts of damage to your device.
So while malware and viruses aren’t exactly the same, the steps taken to combat them are similar enough. That’s why we’re approaching them, as they are the same thing. And the best antivirus software for Mac should deal with both categories equally anyway.
How to tell if Mac has a virus
Viruses display several different symptoms, depending on the kind of malware they are. Your Mac may start behaving strangely, like showing odd things on the screen. Or you may receive a message telling you that your Mac is infected and that you should call such and such number to get rid of it. Prior warning, don’t call that number!
Here are other signs you can easily spot if your Mac has a virus:
- Your Mac suddenly starts running slow, or applications lag much more than usual.
- You see adverts pop up on your Mac randomly.
- Out of the blue, websites you visit show adverts unconnected with anything you’ve browsed or searched for.
- You find software, like a browser toolbar, that you’ve never installed.
- Websites that don’t normally show adverts have banners on them.
If your Mac displays one or more of these symptoms, it doesn’t necessarily mean it has a virus or has been infected with malware. It’s a sign that it might. If you’d like to investigate further how Apple computers get viruses, head to this article. Remember, it’s always worth getting to the root of the problem. If you’re dealing with malware in particular, time to install an antivirus and use it to scan your Mac.
But do Macs really need antivirus?
One might argue that even though the threat of Mac infection with malware or virus is very real, Apple has all the needed security measures and settings in place for their users. And you’re not wrong there. Apple has an advanced built-in security system and settings that you can tune up, so it is a good starting point.
Turn on your security settings to the maximum, Apple suggests allowing only apps from the Mac App Store or verified developers to be installed on your Mac.
This is all good, but the reasons why developers refuse to sell on the App Store are numerous, so there’s a big chance an app you need will not be there. It can also be created by developers who don’t have an agreement with Apple, and it doesn’t make the app any less valuable or necessary. So what do you do?
- Avoid software that scares you in its advertisement: your Mac is not under threat, your system has no critical errors, no, you don’t need this app to save your data.
- If you have accidentally installed such apps (ironically, malware usually poses as antivirus software), the only rule is never to give them your credit card details. The apps that ask for money in exchange for imaginary threat protection or for giving you back control over your Mac are called ransomware.
- Be on the lookout for websites that distribute illegal (pirated) content. They frequently show giant misleading buttons that install random downloaders or packages and tiny buttons that link to the content needed.
- Google the app developer. Do they have a website? Do they disclose their team, contacts, and address?
- Ensure you’re downloading/purchasing the app from the official website, and nothing extra gets installed.
- Avoid unnecessary browser extensions and clean cache and cookies regularly.
- We could advise you to get a Mac antivirus program or other Mac security software. But the issue with antivirus Mac software is that few applications deal with it appropriately since the problem is relatively new. Most Mac virus protection apps do little to protect your Mac.
It’s better to be safe than sorry, but…
What then about built-in antivirus?
Over the years, Apple has implemented many security measures and features to safeguard its computers. Here are some of them:
Software that gets checked and verified by Apple receives a developer’s certificate. GateKeeper then checks if the app you’re about to install has this certificate. You’ll see a warning message telling you it’s not verified if it doesn't.
Sandboxing limits the damage that a malicious app can do. Malicious software can still sneak into your Mac, but it won’t be able to use your camera or microphone and access your data without permission.
Another built-in antivirus technology, Xprotect, helps protect your Mac from known malicious threats. It checks your apps when you first launch them and ensures no new malicious changes are introduced in the file system.
With all these built-in antivirus measures, you might hesitate if Macs need antivirus. Macs are indeed safer than other computers. But here’s the thing, the recent threat, Shlayer, could bypass GateKeeper and get on Macs unnoticed, showing intrusive ads and running scripts that open doors to other malware. So the better question would be how safe your Mac is without additional antivirus software.
The bottom line is cybercriminals are getting more innovative than ever, and Mac users — are an attractive target. No doubt, staying vigilant will help you avoid most threats and protect your Mac from malware. Still, investing in good antivirus software is something to consider if you want to remain fully protected.
What do I do if my Mac gets a virus?
We wrote an entire article covering all the basics of removing viruses and malware from your Mac. Feel free to skip to the good part and read it here. But if you’re still reading this, here’s a summary of what you should and shouldn’t do if you end up with a virus on your Mac.
A piece of advice, don’t just google your symptoms and download whatever comes at the top of the search listings. The most widespread host for malware is fake antivirus software, and often the websites that contain these apps are optimized for the very symptoms they cause.
If you need to scan your Mac for malware, here’s a good read on how to run antivirus on Mac (automatically or manually). Or simply download CleanMyMac X. It detects thousands of threats, including adware, worms, spyware, ransomware, and more.
The app comes with a malware monitor that works in real-time. If some dubious app attempts to get into your Launch Agents, you’ll see an alert and instructions on what to do next. Here’s the screenshot of CleanMyMac X detecting a bunch of viruses on a MacBook…
How to protect your Mac from malware?
1. Use antivirus software
So, what to look for in antivirus software? Antivirus software is a juicy market that attracts many newcomers. That’s why you should look into software with a reputable name and credibility. Don’t fall for fancy names, though! And don’t install more than two antivirus programs because antiviruses often overlap. Here’s an example of what else to consider:
Reputable brand: CleanMyMac X
Apple notarization: ✅
Real-time protection: ✅
Regular updates: ✅
2. Clear your browser cache
If the malware has come from a website you downloaded, you don’t want any traces left on your Mac. Quickly clear the browser cache for Safari and Chrome using CleanMyMac X mentioned above.
3. Make sure your Mac’s Firewall is switched on
- Go to System Settings and click on the Network pane.
- Choose the Firewall tab.
- If the green light next to the word Firewall is showing, Firewall is on. If it’s not, click Turn On Firewall.
- Click on Firewall Options and check the Enable Stealth Mode box.
4. Use public Wi-Fi networks safely
Keeping your Firewall on will help protect your Mac, but it won’t keep out every piece of malware. If you regularly use your Mac on a public Wi-Fi network, you should consider using MacPaw’s ClearVPN — the first effortless VPN for a personalized and secure online experience.
By using ClearVPN, you create a secure tunnel between your Mac and the websites you visit, and your data is encrypted. If the Wi-Fi network is compromised, your data and your Mac will be safe.
5. Don’t click the link
Email messages are a very common distribution medium for malware. Never click a link in an email unless you’re certain you know who the message is from. Phishing, as it’s called, can catch anyone out if you’re not vigilant. We’ve all had emails that look legitimate and ask us to click a link to access a form or read an important message. Don’t do it. The easiest strategy — and the best malware removal for Mac — is simply being vigilant.
6. Trust in Gatekeeper
Gatekeeper is a built-in security layer of the macOS itself. It’s no replacement for antimalware software, but it has a couple of very helpful tools that protect your Mac. One is Quarantine. If you’ve ever downloaded an application from the internet, you’ll have seen it in action. It pops up a dialog box telling you that you’ve downloaded it and where it’s come from — assuming it’s been digitally signed by its developer. Apps that don’t have a signature supplied by Apple don’t even get that far. You must then click to approve the app before it can be opened. Please don’t ignore this box when you see it. Check the app you’ve downloaded is the one you expected to download before you agree to open it.
7. Xprotect yourself
The other macOS tool is Xprotect — it scans files you’ve downloaded when you open them and looks for known malware. If it finds anything, it will warn you. If you see it, follow its instructions.
8. Avoid known offenders
Both Flash and Java have been used in the past to spread viruses — usually by hackers who create fake installers that pretend to be updated and lure you into downloading them. But outdated versions of Flash (the MacDownloader malware used a fake Flash update as a host) and Java can leave your Mac vulnerable to malware. The safest approach is to uninstall them altogether. Now that most of the web uses HTML 5 video and Adobe discontinued support for Flash Player, there’s no reason to have Flash installed on your Mac.
9. Keep macOS up to date
Apple introduces security patches and fixes to known software vulnerabilities with every update. That’s why it’s essential to stay updated. Here’s how to check for macOS updates:
- Go to Apple menu > About This Mac.
- Click Software Update.
If updates are available, click Update Now to install them. If you haven’t updated your Mac for a long time, there will be the Upgrade Now option that will install a new macOS version.
10. Keep your browser up to date
Safari updates are installed with macOS updates, while other browsers like Firefox and Chrome will alert you when your browser is outdated and a newer version is available. Don’t ignore the warnings. Update your browser immediately. Often, these updates will include security features designed to keep you safe from malware.
11. Back up your Mac regularly
If you back up your Mac, you can restore from that backup if a virus causes real damage to your system. And if you use Time Machine, you can boot your Mac into the recovery partition and restore from a snapshot taken just before your Mac became infected. That makes it very easy to get back up and running again.
12. Avoid Facebook scams
It’s now clear that clicking a malicious link in a suspicious email may get your personal data exposed to scammers. The same works on Facebook. There are multiple Facebook scams that trick gullible people into giving away their personal information, like fake posts telling them you’ve won a vast sum of money. Here are some other popular Facebook scams to avoid:
- Fake warnings
- Direct messages with suspicious links
- Surveys that contain personal questions
- Scam ads
Be vigilant on social media and only click a link if you know where it leads.
13. Secure personal data
You could use macOS FileVault to encrypt every file on your Mac. But it consumes resources and hits your Mac’s performance. For most of us, it’s overkill. But you should ensure that all sensitive or personal data stored on your Mac is encrypted. One way to do that is to use a password manager. As well as passwords, most apps encrypt and safely store credit card details, bank accounts, and text notes. You should also use secure, difficult-to-guess passwords from your Mac user account to your Wi-Fi network.
Bottom line: macOS used to feel like the Great Wall of China, yet now, each Mac user has to exercise caution. The best virus protection for a Mac is to be alert and use common sense. If you notice your Mac behaving strangely, take action immediately, even if it’s only launching Activity Monitor, to find out why your Mac is running slowly.
Apple virus protection in macOS, in the form of Gatekeeper and Xprotect, will help, but they won’t stop every possible piece of malware. Be vigilant, back up your Mac regularly, and minimize the risk by removing Flash and Java. The chances of your Mac becoming infected with a virus are slim. By employing the advice here, you can reduce that risk even further.
Got valuable insights from this article? Our MacPaw team is on the watch for the latest Mac security updates, so stay tuned!