Apple Has Made Major Updates to macOS Malware Protection in 2022

by

Apple has made notable updates to macOS malware tools over the course of the last six months, according to updates tracked by Howard Oakley at Eclectic Lighting Company (via Ars Technica).

macOS Malware Feature
"In the last six months, macOS malware protection has changed more than it did over the previous seven years," writes Oakley in a blog post published this week. Malware detection on the Mac is now "fully pre-emptive" and as active as "many commercial anti-malware products."

Specifically, at around the time that macOS 12.3 Monterey was launched, Apple quietly introduced a new XProtect Remediator tool for its XProtect service that checks for malware in the background. XProtect Remediator more frequently looks for malware and fixes it if malware is detected.

Apple previously used the Malware Removal Tool (MRT) and XProtect, but XProtect was limited to checking apps and code against a list of known malware and MRT ran infrequently. Apple's new solution is more aggressive and offers more protection. Xproduct Remediator is available on Macs running macOS Monterey, macOS Big Sur, and macOS Catalina, but it is not available on Macs running older versions of macOS.

The new XProtect feature is updated regularly and it runs at least once per day, but sometimes even more frequently. For some malware checks, it runs as often as every hour or two, and it is able to identify a range of malware, such as Adload, DubRobber, Pirrit, SnowDrift, Trovi, and more.

Scans are most likely to take place when the Mac is awake but not in active use, and is primarily doing background tasks like backups and receiving email. Oakley says that the new malware protections represent a "big step forward" for those who are running the most recent versions of macOS, with more information available in Oakley's full blog post.

Popular Stories

imac video apple feature

Apple Unveils First New Products of 2026

Monday January 26, 2026 1:55 pm PST by
Apple today introduced its first two physical products of 2026: a second-generation AirTag and the Black Unity Connection Braided Solo Loop for the Apple Watch. Read our coverage of each announcement to learn more:Apple Unveils New AirTag With Longer Range, Louder Speaker, and More Apple Introduces New Black Unity Apple Watch BandBoth the new AirTag and the Black Unity Connection Braided...
Read Full Article
iPhone 5s

iPhone 5s Gets New Software Update 13 Years After Launch

Monday January 26, 2026 3:56 pm PST by
Alongside iOS 26.2.1, Apple today released an updated version of iOS 12 for devices that are still running that operating system update, eight years after the software was first released. iOS 12.5.8 is available for the iPhone 5s and the iPhone 6, meaning Apple is continuing to support these devices for 13 and 12 years after launch, respectively. The iPhone 5s came out in September 2013,...
Read Full Article129 comments
Second Generation AirTag Feature

Apple Unveils New AirTag With Longer Range, Louder Speaker, and More

Monday January 26, 2026 6:07 am PST by
Apple today introduced the second-generation AirTag, with key features including longer range for tracking items and a louder speaker. For those who are not familiar, the AirTag is a small accessory that you can attach to your backpack, keys, or other items. Then, you can track the location of those items in the Find My app on the iPhone, iPad, Mac, Apple Watch, and iCloud.com. The new...
Read Full Article242 comments
Apple Creator Studio

Apple's Next Launch is Today

Tuesday January 27, 2026 2:39 pm PST by
Update: Apple Creator Studio is now available. Apple Creator Studio launches this Wednesday, January 28. The all-in-one subscription provides access to the Final Cut Pro, Logic Pro, Pixelmator Pro, Motion, Compressor, and MainStage apps, with U.S. pricing set at $12.99 per month or $129 per year. A subscription to Apple Creator Studio also unlocks "intelligent features" and "premium...
Read Full Article
Apple Logo Spotlight

Apple to Launch These 20+ Products This Year

Sunday January 25, 2026 6:02 pm PST by
2026 promises to be yet another busy year for Apple, with the company rumored to be planning more than 20 product announcements over the coming months. Beyond the usual updates to iPhones, iPads, Macs, and Apple Watches, Apple is expected to release its all-new smart home hub, which was reportedly delayed until the more personalized version of Siri is ready. Other unique products rumored for ...
Read Full Article76 comments

Top Rated Comments

TheDailyApple Avatar
TheDailyApple
45 months ago

I guess Mac users can't feel superior anymore, computer comes with Anti Malware...
Built-in security has always been a plus for an operating system. The things users hated (and still do) is trashy third party anti-virus programs that slow your computer down, get in the way, and generally make a nuisance of themselves. Ever since Windows 10 was released, Defender has been sufficient for anyone with good internet practices. Both operating systems still need extra security for people with bad security practices or who need extra protection, but their built in systems are sufficient for most. The thing Mac users hated about previous versions of Windows (Vista and earlier) was that a trashy third party antivirus was practically a necessity.

Oh, and if you had read the article you’d know that Macs already had anti-malware built in. The point of the article is that it’s gotten better.
Score: 28 Votes (Like | Disagree)
polyphenol Avatar
polyphenol
45 months ago
Having dealt with lots of different third-party anti-virus/anti-malware products on Windows (and a couple on macOS), I hate them all with a vengeance.

When protection is, effectively, built into the OS, you know that every developer will have had to deal with it.

When protection is one of a dozen, or more, products, you cannot realistically expect developers to have dealt with more than a small proportion.

Please can I have back the hours I have spent trying to identify why some software is not working on some machines - but is fine on others. Eventually finding that removal of anti-malware fixes it. But on the adjacent machine all is well with it installed.

(And removal of anti-malware software can be harder than getting rid of some actual malware.)
Score: 11 Votes (Like | Disagree)
max2 Avatar
max2
45 months ago
Thank you Apple!
Score: 11 Votes (Like | Disagree)
TheDailyApple Avatar
TheDailyApple
45 months ago
This is good to hear. As Macs get more popular, there is going to be more and more malware targeting them.
Score: 11 Votes (Like | Disagree)
VineRider Avatar
VineRider
45 months ago
I wish Apple was more forthcoming about what their anti-malware engines were actually doing, and when....I wish they would log the scans, log the definition updates, give the user some idea of the protection being offered.
Score: 11 Votes (Like | Disagree)
djam Avatar
djam
45 months ago

Many thanks Apple but why quietly?
Apple have traditionally used Mac's "virus free" nature as a selling tool. You don't want to change that perception if you don't have to.
Score: 6 Votes (Like | Disagree)
Read All Comments