Apple Has Made Major Updates to macOS Malware Protection in 2022

by

Apple has made notable updates to macOS malware tools over the course of the last six months, according to updates tracked by Howard Oakley at Eclectic Lighting Company (via Ars Technica).

macOS Malware Feature
"In the last six months, macOS malware protection has changed more than it did over the previous seven years," writes Oakley in a blog post published this week. Malware detection on the Mac is now "fully pre-emptive" and as active as "many commercial anti-malware products."

Specifically, at around the time that macOS 12.3 Monterey was launched, Apple quietly introduced a new XProtect Remediator tool for its XProtect service that checks for malware in the background. XProtect Remediator more frequently looks for malware and fixes it if malware is detected.

Apple previously used the Malware Removal Tool (MRT) and XProtect, but XProtect was limited to checking apps and code against a list of known malware and MRT ran infrequently. Apple's new solution is more aggressive and offers more protection. Xproduct Remediator is available on Macs running macOS Monterey, macOS Big Sur, and macOS Catalina, but it is not available on Macs running older versions of macOS.

The new XProtect feature is updated regularly and it runs at least once per day, but sometimes even more frequently. For some malware checks, it runs as often as every hour or two, and it is able to identify a range of malware, such as Adload, DubRobber, Pirrit, SnowDrift, Trovi, and more.

Scans are most likely to take place when the Mac is awake but not in active use, and is primarily doing background tasks like backups and receiving email. Oakley says that the new malware protections represent a "big step forward" for those who are running the most recent versions of macOS, with more information available in Oakley's full blog post.

Popular Stories

iPhone SE 4 Vertical Camera Feature

iPhone SE 4 Production Will Reportedly Begin Ramping Up in October

Tuesday July 23, 2024 2:00 pm PDT by
Following nearly two years of rumors about a fourth-generation iPhone SE, The Information today reported that Apple suppliers are finally planning to begin ramping up mass production of the device in October of this year. If accurate, that timeframe would mean that the next iPhone SE would not be announced alongside the iPhone 16 series in September, as expected. Instead, the report...
Read Full Article68 comments
iPhone 17 Plus Feature

iPhone 17 Lineup Specs Detail Display Upgrade and New High-End Model

Monday July 22, 2024 4:33 am PDT by
Key details about the overall specifications of the iPhone 17 lineup have been shared by the leaker known as "Ice Universe," clarifying several important aspects of next year's devices. Reports in recent months have converged in agreement that Apple will discontinue the "Plus" iPhone model in 2025 while introducing an all-new iPhone 17 "Slim" model as an even more high-end option sitting...
Read Full Article160 comments
Generic iPhone 17 Feature With Full Width Dynamic Island

Kuo: Ultra-Thin iPhone 17 to Feature A19 Chip, Single Rear Camera, Semi-Titanium Frame, and More

Wednesday July 24, 2024 9:06 am PDT by
Apple supply chain analyst Ming-Chi Kuo today shared alleged specifications for a new ultra-thin iPhone 17 model rumored to launch next year. Kuo expects the device to be equipped with a 6.6-inch display with a current-size Dynamic Island, a standard A19 chip rather than an A19 Pro chip, a single rear camera, and an Apple-designed 5G chip. He also expects the device to have a...
Read Full Article162 comments
iPhone 16 Pro Sizes Feature

iPhone 16 Series Is Less Than Two Months Away: Everything We Know

Thursday July 25, 2024 5:43 am PDT by
Apple typically releases its new iPhone series around mid-September, which means we are about two months out from the launch of the iPhone 16. Like the iPhone 15 series, this year's lineup is expected to stick with four models – iPhone 16, iPhone 16 Plus, iPhone 16 Pro, and iPhone 16 Pro Max – although there are plenty of design differences and new features to take into account. To bring ...
Read Full Article130 comments
icloud private relay outage

iCloud Private Relay Experiencing Outage

Thursday July 25, 2024 3:18 pm PDT by
Apple’s iCloud Private Relay service is down for some users, according to Apple’s System Status page. Apple says that the iCloud Private Relay service may be slow or unavailable. The outage started at 2:34 p.m. Eastern Time, but it does not appear to be affecting all iCloud users. Some impacted users are unable to browse the web without turning iCloud Private Relay off, while others are...
Read Full Article81 comments

Top Rated Comments

TheDailyApple Avatar
TheDailyApple
25 months ago

I guess Mac users can't feel superior anymore, computer comes with Anti Malware...
Built-in security has always been a plus for an operating system. The things users hated (and still do) is trashy third party anti-virus programs that slow your computer down, get in the way, and generally make a nuisance of themselves. Ever since Windows 10 was released, Defender has been sufficient for anyone with good internet practices. Both operating systems still need extra security for people with bad security practices or who need extra protection, but their built in systems are sufficient for most. The thing Mac users hated about previous versions of Windows (Vista and earlier) was that a trashy third party antivirus was practically a necessity.

Oh, and if you had read the article you’d know that Macs already had anti-malware built in. The point of the article is that it’s gotten better.
Score: 28 Votes (Like | Disagree)
polyphenol Avatar
polyphenol
25 months ago
Having dealt with lots of different third-party anti-virus/anti-malware products on Windows (and a couple on macOS), I hate them all with a vengeance.

When protection is, effectively, built into the OS, you know that every developer will have had to deal with it.

When protection is one of a dozen, or more, products, you cannot realistically expect developers to have dealt with more than a small proportion.

Please can I have back the hours I have spent trying to identify why some software is not working on some machines - but is fine on others. Eventually finding that removal of anti-malware fixes it. But on the adjacent machine all is well with it installed.

(And removal of anti-malware software can be harder than getting rid of some actual malware.)
Score: 11 Votes (Like | Disagree)
max2 Avatar
max2
25 months ago
Thank you Apple!
Score: 11 Votes (Like | Disagree)
TheDailyApple Avatar
TheDailyApple
25 months ago
This is good to hear. As Macs get more popular, there is going to be more and more malware targeting them.
Score: 11 Votes (Like | Disagree)
VineRider Avatar
VineRider
25 months ago
I wish Apple was more forthcoming about what their anti-malware engines were actually doing, and when....I wish they would log the scans, log the definition updates, give the user some idea of the protection being offered.
Score: 11 Votes (Like | Disagree)
djam Avatar
djam
25 months ago

Many thanks Apple but why quietly?
Apple have traditionally used Mac's "virus free" nature as a selling tool. You don't want to change that perception if you don't have to.
Score: 6 Votes (Like | Disagree)
Read All Comments