Javier Gallardo on January 4, 2023 at 12:18 pm said
When I was young, I knew how to change a spark-plug in my car; now, I
can’t even reach them (I suppose they’re still there!).
…We’re happily accepting how Mac OS is becoming more and more intricate, favoring solidness and security. All these inner details are so obscure
as the motor functioning in our cars. I’m sure developers will learn
(and will make their tools), same as mechanics do.
The time for aficionados to fiddle with their machine have passed away,
I’m afraid. I’m getting used to it; more & more after accepting that the inner SSD in my MacBook Pro will die some day for sure, no matter how carefully I use my mac, the same as a fire-lighter without refueling
valve. Buy, use, trash it. (I hate that).
So, not a surprise how the System is becoming almost totally opaque for
just an advanced user like me.
I agree, however, that developers and computer technics should be
clearly informed in detail about all these changes.
I’m sure Mr. Hoakley is making a very valuable investigation (bravo!),
and I would like (I seriously hope) that Apple would assist you and
others in a more compromised way.
Thank you for your “revelations”.
https://eclecticlight.co/2023/01/04/how-do-you-know-when-macos-detects-and-remediates-malware/comment-page-1/?unapproved=81917&moderation-hash=f52f3c549d056908de5ee3e6c23db045#comment-81917
If we don’t take malware seriously, then we’re lost.
Ref: Howard Oakley, January 2023
On Jan 4, 2023 at 3:49:35 PM MST, "David Brooks" wrote <3ontL.65888$[email protected]>:
On 04/01/2023 22:41, Snit wrote:
On Jan 4, 2023 at 3:26:40 PM MST, "David Brooks" wrote
<A2ntL.460211$[email protected]>:
On 04/01/2023 21:00, Apd wrote:
"David Brooks" quoted HO:
If we don't take malware seriously, then we're lost.
Howard.
He talks about Apple's obscure naming systems: "Apple is in the unique >>>>> position of being able to agree common terminology with security
researchers. It's high time that Apple fixed this and stopped
confusing users".
At least he acknowledges that there *IS* Mac malware.
Folk on the ASC forums deny malware exists and decry the use of AV software.
I hear there is no need need for AV software because Apple handles it for you
-- which is not the same as none existing. Really for most people there is >>> little if any need. I know few people who have seen macOS malware in the last
decade. It *does* exist... but it is not common at all.
Goodbye 2022 …and hello 2023! 🥳
https://objective-see.org/blog/blog_0x71.html
For the 7th year in a row, I’ve put together a blog post that
comprehensively covers all the new Mac malware that appeared during the
course of the year.
While the specimens may have been reported on before (i.e. by the AV
company that discovered them), this blog aims to cumulatively and
comprehensively cover all the new Mac malware of 2022 - in one place
…yes, with samples of each malware available for download.
After reading this blog post, you should have a thorough understanding
of recent threats targeting macOS. This is especially important as Macs
continue to flourish, especially compared to other personal computers
brands. In fact, an industry report from late 2022 showed that the
year-over-year growth of all of the top 5 computer companies declined
significantly …except for Apple who saw a 40% increase!
This growth is especially apparent in the context of the enterprise so
much that many believe “Mac will become the dominant enterprise endpoint >> by 2030”:
What percent of Mac users get hit by malware? Not talking about phishing and other social engineering stuff? And how much of this malware is not stuff that
people are tricked into installing? Enter your Admin password and all bets are
off.
On 04/01/2023 23:06, Snit wrote:
On Jan 4, 2023 at 3:49:35 PM MST, "David Brooks" wrote
<3ontL.65888$[email protected]>:
On 04/01/2023 22:41, Snit wrote:
On Jan 4, 2023 at 3:26:40 PM MST, "David Brooks" wrote
<A2ntL.460211$[email protected]>:
On 04/01/2023 21:00, Apd wrote:
"David Brooks" quoted HO:
If we don't take malware seriously, then we're lost.
Howard.
He talks about Apple's obscure naming systems: "Apple is in the unique >>>>>> position of being able to agree common terminology with security
researchers. It's high time that Apple fixed this and stopped
confusing users".
At least he acknowledges that there *IS* Mac malware.
Folk on the ASC forums deny malware exists and decry the use of AV software.
I hear there is no need need for AV software because Apple handles it for you
-- which is not the same as none existing. Really for most people there is >>>> little if any need. I know few people who have seen macOS malware in the last
decade. It *does* exist... but it is not common at all.
Goodbye 2022 …and hello 2023! 🥳
https://objective-see.org/blog/blog_0x71.html
For the 7th year in a row, I’ve put together a blog post that
comprehensively covers all the new Mac malware that appeared during the
course of the year.
While the specimens may have been reported on before (i.e. by the AV
company that discovered them), this blog aims to cumulatively and
comprehensively cover all the new Mac malware of 2022 - in one place
…yes, with samples of each malware available for download.
After reading this blog post, you should have a thorough understanding
of recent threats targeting macOS. This is especially important as Macs
continue to flourish, especially compared to other personal computers
brands. In fact, an industry report from late 2022 showed that the
year-over-year growth of all of the top 5 computer companies declined
significantly …except for Apple who saw a 40% increase!
This growth is especially apparent in the context of the enterprise so
much that many believe “Mac will become the dominant enterprise endpoint >>> by 2030”:
What percent of Mac users get hit by malware? Not talking about phishing and >> other social engineering stuff? And how much of this malware is not stuff that
people are tricked into installing? Enter your Admin password and all bets are
off.
That is a VERY good question!
*NOBODY KNOWS*!
Clever malware can remain undiscovered for years. If Apple doesn't find
it - and report it to its customers - there might well be thousands of compromised Macs around the world.
Fortuitously, Patrick Wardle is taking a very close look! https://objective-see.org/blog/blog_0x71.html
Question! Will running 'First Aid' in Disk Utility identify/erradicate malware hiding in a Mac operating System?
Goodbye 2022 …and hello 2023! 🥳
https://objective-see.org/blog/blog_0x71.html
For the 7th year in a row, I’ve put together a blog post that
comprehensively covers all the new Mac malware that appeared during the >>>>> course of the year.
While the specimens may have been reported on before (i.e. by the AV >>>>> company that discovered them), this blog aims to cumulatively and
comprehensively cover all the new Mac malware of 2022 - in one place >>>>> …yes, with samples of each malware available for download.
After reading this blog post, you should have a thorough understanding >>>>> of recent threats targeting macOS. This is especially important as Macs >>>>> continue to flourish, especially compared to other personal computers >>>>> brands. In fact, an industry report from late 2022 showed that the
year-over-year growth of all of the top 5 computer companies declined >>>>> significantly …except for Apple who saw a 40% increase!
This growth is especially apparent in the context of the enterprise so >>>>> much that many believe “Mac will become the dominant enterprise endpoint
by 2030”:
What percent of Mac users get hit by malware? Not talking about phishing and
other social engineering stuff? And how much of this malware is not stuff that
people are tricked into installing? Enter your Admin password and all bets are
off.
That is a VERY good question!
*NOBODY KNOWS*!
As far as I can tell, there is no evidence of any broad spread. Mac Cleaner >> perhaps ironically allowed some but I’ve heard of little else.
I still suggest occasionally running Avast or the like — but macOS still >> seems quite safe. Again, if folks install from unknown sources and put in
their admin PW all bets are off.
You may remember better than I do. Don't ClamXav and EtreCHeck need
one's admin password to function?
Clever malware can remain undiscovered for years. If Apple doesn't find
it - and report it to its customers - there might well be thousands of
compromised Macs around the world.
My question is if there is evidence of this. We can speculate and
catastrophize but that does not really get us anywhere.
I follow what the man from Hawaii publishes!
Go here - and scroll for the list: https://objective-see.org/blog/blog_0x71.html
Fortuitously, Patrick Wardle is taking a very close look!
https://objective-see.org/blog/blog_0x71.html
CleanMyMac seems safe.
I agree.
Question! Will running 'First Aid' in Disk Utility identify/erradicate
malware hiding in a Mac operating System?
It might for some but for most I bet not.
I suspect not, too.
David Brooks <[email protected]> wrote:
On 04/01/2023 23:06, Snit wrote:
On Jan 4, 2023 at 3:49:35 PM MST, "David Brooks" wrote
<3ontL.65888$[email protected]>:
On 04/01/2023 22:41, Snit wrote:
On Jan 4, 2023 at 3:26:40 PM MST, "David Brooks" wrote
<A2ntL.460211$[email protected]>:
On 04/01/2023 21:00, Apd wrote:
"David Brooks" quoted HO:
If we don't take malware seriously, then we're lost.
Howard.
He talks about Apple's obscure naming systems: "Apple is in the unique >>>>>>> position of being able to agree common terminology with security >>>>>>> researchers. It's high time that Apple fixed this and stopped
confusing users".
At least he acknowledges that there *IS* Mac malware.
Folk on the ASC forums deny malware exists and decry the use of AV software.
I hear there is no need need for AV software because Apple handles it for you
-- which is not the same as none existing. Really for most people there is
little if any need. I know few people who have seen macOS malware in the last
decade. It *does* exist... but it is not common at all.
Goodbye 2022 …and hello 2023! 🥳
https://objective-see.org/blog/blog_0x71.html
For the 7th year in a row, I’ve put together a blog post that
comprehensively covers all the new Mac malware that appeared during the >>>> course of the year.
While the specimens may have been reported on before (i.e. by the AV
company that discovered them), this blog aims to cumulatively and
comprehensively cover all the new Mac malware of 2022 - in one place
…yes, with samples of each malware available for download.
After reading this blog post, you should have a thorough understanding >>>> of recent threats targeting macOS. This is especially important as Macs >>>> continue to flourish, especially compared to other personal computers
brands. In fact, an industry report from late 2022 showed that the
year-over-year growth of all of the top 5 computer companies declined
significantly …except for Apple who saw a 40% increase!
This growth is especially apparent in the context of the enterprise so >>>> much that many believe “Mac will become the dominant enterprise endpoint >>>> by 2030”:
What percent of Mac users get hit by malware? Not talking about phishing and
other social engineering stuff? And how much of this malware is not stuff that
people are tricked into installing? Enter your Admin password and all bets are
off.
That is a VERY good question!
*NOBODY KNOWS*!
As far as I can tell, there is no evidence of any broad spread. Mac Cleaner perhaps ironically allowed some but I’ve heard of little else.
I still suggest occasionally running Avast or the like — but macOS still seems quite safe. Again, if folks install from unknown sources and put in their admin PW all bets are off.
Clever malware can remain undiscovered for years. If Apple doesn't find
it - and report it to its customers - there might well be thousands of
compromised Macs around the world.
My question is if there is evidence of this. We can speculate and catastrophize but that does not really get us anywhere.
Fortuitously, Patrick Wardle is taking a very close look!
https://objective-see.org/blog/blog_0x71.html
CleanMyMac seems safe.
Question! Will running 'First Aid' in Disk Utility identify/erradicate
malware hiding in a Mac operating System?
It might for some but for most I bet not.
On Jan 5, 2023 at 4:30:25 PM MST, "David Brooks" wrote <l4JtL.33005$[email protected]>:
Goodbye 2022 …and hello 2023! 🥳
https://objective-see.org/blog/blog_0x71.html
For the 7th year in a row, I’ve put together a blog post that
comprehensively covers all the new Mac malware that appeared during the >>>>>> course of the year.
While the specimens may have been reported on before (i.e. by the AV >>>>>> company that discovered them), this blog aims to cumulatively and
comprehensively cover all the new Mac malware of 2022 - in one place >>>>>> …yes, with samples of each malware available for download.
After reading this blog post, you should have a thorough understanding >>>>>> of recent threats targeting macOS. This is especially important as Macs >>>>>> continue to flourish, especially compared to other personal computers >>>>>> brands. In fact, an industry report from late 2022 showed that the >>>>>> year-over-year growth of all of the top 5 computer companies declined >>>>>> significantly …except for Apple who saw a 40% increase!
This growth is especially apparent in the context of the enterprise so >>>>>> much that many believe “Mac will become the dominant enterprise endpoint
by 2030”:
What percent of Mac users get hit by malware? Not talking about phishing and
other social engineering stuff? And how much of this malware is not stuff that
people are tricked into installing? Enter your Admin password and all bets are
off.
That is a VERY good question!
*NOBODY KNOWS*!
As far as I can tell, there is no evidence of any broad spread. Mac Cleaner >>> perhaps ironically allowed some but I’ve heard of little else.
I still suggest occasionally running Avast or the like — but macOS still >>> seems quite safe. Again, if folks install from unknown sources and put in >>> their admin PW all bets are off.
You may remember better than I do. Don't ClamXav and EtreCHeck need
one's admin password to function?
At the very least ClamXav does -- as does all anti-malware software. If you do
not grant it access to the drive it cannot check for malware. I assume EtreCheck is the same. But they are well known and not seen as a threat by the
community.
Clever malware can remain undiscovered for years. If Apple doesn't find >>>> it - and report it to its customers - there might well be thousands of >>>> compromised Macs around the world.
My question is if there is evidence of this. We can speculate and
catastrophize but that does not really get us anywhere.
I follow what the man from Hawaii publishes!
Go here - and scroll for the list:
https://objective-see.org/blog/blog_0x71.html
There are many illnesses and the like people can get.
https://dph.illinois.gov/topics-services/diseases-and-conditions/diseases-a-z-list.html
Unless I have symptoms or reason to think I am infected or have a condition I tend to not get too caught up worrying about it. It would not be healthy to. Does not mean one should not take care of oneself. In the same way it makes sense to take precautions and do occasional malware checks on Macs, but for the average user that is it. You are not likely to find something that Avast and AVG miss (not impossible, but not likely).
Fortuitously, Patrick Wardle is taking a very close look!
https://objective-see.org/blog/blog_0x71.html
CleanMyMac seems safe.
I agree.
Question! Will running 'First Aid' in Disk Utility identify/erradicate >>>> malware hiding in a Mac operating System?
It might for some but for most I bet not.
I suspect not, too.
On 06/01/2023 00:01, Snit wrote:
On Jan 5, 2023 at 4:30:25 PM MST, "David Brooks" wrote
<l4JtL.33005$[email protected]>:
Goodbye 2022 …and hello 2023! 🥳
https://objective-see.org/blog/blog_0x71.html
For the 7th year in a row, I’ve put together a blog post that
comprehensively covers all the new Mac malware that appeared during the >>>>>>> course of the year.
While the specimens may have been reported on before (i.e. by the AV >>>>>>> company that discovered them), this blog aims to cumulatively and >>>>>>> comprehensively cover all the new Mac malware of 2022 - in one place >>>>>>> …yes, with samples of each malware available for download.
After reading this blog post, you should have a thorough understanding >>>>>>> of recent threats targeting macOS. This is especially important as Macs >>>>>>> continue to flourish, especially compared to other personal computers >>>>>>> brands. In fact, an industry report from late 2022 showed that the >>>>>>> year-over-year growth of all of the top 5 computer companies declined >>>>>>> significantly …except for Apple who saw a 40% increase!
This growth is especially apparent in the context of the enterprise so >>>>>>> much that many believe “Mac will become the dominant enterprise endpoint
by 2030”:
What percent of Mac users get hit by malware? Not talking about phishing and
other social engineering stuff? And how much of this malware is not stuff that
people are tricked into installing? Enter your Admin password and all bets are
off.
That is a VERY good question!
*NOBODY KNOWS*!
As far as I can tell, there is no evidence of any broad spread. Mac Cleaner
perhaps ironically allowed some but I’ve heard of little else.
I still suggest occasionally running Avast or the like — but macOS still >>>> seems quite safe. Again, if folks install from unknown sources and put in >>>> their admin PW all bets are off.
You may remember better than I do. Don't ClamXav and EtreCHeck need
one's admin password to function?
At the very least ClamXav does -- as does all anti-malware software. If you do
not grant it access to the drive it cannot check for malware. I assume
EtreCheck is the same. But they are well known and not seen as a threat by the
community.
Have you EVER asked about either of them on the ASC forums?
If so, I'd like to read the thread, to see what answers YOU received!
Clever malware can remain undiscovered for years. If Apple doesn't find >>>>> it - and report it to its customers - there might well be thousands of >>>>> compromised Macs around the world.
My question is if there is evidence of this. We can speculate and
catastrophize but that does not really get us anywhere.
I follow what the man from Hawaii publishes!
Go here - and scroll for the list:
https://objective-see.org/blog/blog_0x71.html
There are many illnesses and the like people can get.
https://dph.illinois.gov/topics-services/diseases-and-conditions/diseases-a-z-list.html
Unless I have symptoms or reason to think I am infected or have a condition I
tend to not get too caught up worrying about it. It would not be healthy to. >> Does not mean one should not take care of oneself. In the same way it makes >> sense to take precautions and do occasional malware checks on Macs, but for >> the average user that is it. You are not likely to find something that Avast >> and AVG miss (not impossible, but not likely).
Indeed. The advice given here is sound:-
https://discussions.apple.com/docs/DOC-8841
Fortuitously, Patrick Wardle is taking a very close look!
https://objective-see.org/blog/blog_0x71.html
CleanMyMac seems safe.
I agree.
Question! Will running 'First Aid' in Disk Utility identify/erradicate >>>>> malware hiding in a Mac operating System?
It might for some but for most I bet not.
I suspect not, too.
What do you think of the work/investigation which is carried ut by
Patrick Wardle?
| Sysop: | Keyop |
|---|---|
| Location: | Huddersfield, West Yorkshire, UK |
| Users: | 714 |
| Nodes: | 16 (2 / 14) |
| Uptime: | 141:18:59 |
| Calls: | 12,087 |
| Files: | 14,998 |
| Messages: | 6,517,442 |