Apple Has Made Major Updates to macOS Malware Protection in 2022

Apple has made notable updates to macOS malware tools over the course of the last six months, according to updates tracked by Howard Oakley at Eclectic Lighting Company (via Ars Technica).

macOS Malware Feature
"In the last six months, macOS malware protection has changed more than it did over the previous seven years," writes Oakley in a blog post published this week. Malware detection on the Mac is now "fully pre-emptive" and as active as "many commercial anti-malware products."

Specifically, at around the time that macOS 12.3 Monterey was launched, Apple quietly introduced a new XProtect Remediator tool for its XProtect service that checks for malware in the background. XProtect Remediator more frequently looks for malware and fixes it if malware is detected.

Apple previously used the Malware Removal Tool (MRT) and XProtect, but XProtect was limited to checking apps and code against a list of known malware and MRT ran infrequently. Apple's new solution is more aggressive and offers more protection. Xproduct Remediator is available on Macs running macOS Monterey, macOS Big Sur, and macOS Catalina, but it is not available on Macs running older versions of macOS.

The new XProtect feature is updated regularly and it runs at least once per day, but sometimes even more frequently. For some malware checks, it runs as often as every hour or two, and it is able to identify a range of malware, such as Adload, DubRobber, Pirrit, SnowDrift, Trovi, and more.

Scans are most likely to take place when the Mac is awake but not in active use, and is primarily doing background tasks like backups and receiving email. Oakley says that the new malware protections represent a "big step forward" for those who are running the most recent versions of macOS, with more information available in Oakley's full blog post.

Popular Stories

iPhone 17 Pro 3 4ths Perspective Aluminum Camera Module 1

New iPhone 17 Pro Details: Brighter Display, Best Battery Life, and More

Wednesday September 3, 2025 5:33 am PDT by
Apple's iPhone 17 Pro and iPhone 17 Pro Max models will feature a number of significant display, thermal, and battery improvements, according to new late-stage rumors. According to the Weibo leaker known as "Instant Digital," the iPhone 17 Pro models will feature displays with higher brightness, making it more suitable for use in direct sunlight for prolonged periods. The iPhone 16 Pro and...
airpods pro 2

Two Versions of AirPods Pro 3 Coming With These Differences

Monday September 8, 2025 4:51 am PDT by
Apple is preparing to launch two versions of the AirPods Pro 3 over 2025 and 2026, according to a Weibo leaker. Yesterday, supply chain analyst Ming-Chi Kuo reported that Apple is planning to debut the AirPods Pro 3 this year. They could arrive as soon as this week at Apple's "Awe dropping" event. Crucially, Kuo added that Apple is planning to introduce a successor to this year's AirPods ...
iPhone 17 Pro in Hand Feature Lowgo

iPhone 17 Pro's Biggest Design Mystery is Finally Solved

Friday September 5, 2025 9:33 am PDT by
Apple is set to unveil the iPhone 17 series in just four days from now, and the biggest design mystery surrounding the Pro models has finally been solved. In a report outlining his expectations for Apple's event next week, Bloomberg's Mark Gurman said the iPhone 17 Pro models will have "a new cutout area on the bottom two-thirds of the phone that doubles as the wireless charging area."...
iPhone Air Battery Feature

All iPhone 17 and iPhone 17 Pro Battery Capacities Allegedly Leaked

Sunday September 7, 2025 9:03 pm PDT by
Just ahead of Apple unveiling the iPhone 17 series on Tuesday, it appears that battery capacities for the devices have surfaced in a Chinese regulatory database. The table below lists the alleged battery capacities for each model, which were shared in a post on X today by an account known as ShrimpApplePro. The database suggests that the iPhone 17 Air, iPhone 17 Pro, and iPhone 17 Pro...
AirPods Pro 3 Heart Rate Tracking Feature

Kuo: AirPods Pro 3 Coming Soon, But Bigger Upgrade Arriving Next Year

Sunday September 7, 2025 10:52 am PDT by
Apple plans to release AirPods Pro 3 this year, according to supply chain analyst Ming-Chi Kuo. All signs point towards Apple unveiling the AirPods Pro 3 during its iPhone 17 event on Tuesday, September 9. However, Kuo did not provide a specific timeframe beyond the second half of 2025, which lines up with previous rumors. Kuo did not mention any new features that are planned for the...

Top Rated Comments

TheDailyApple Avatar
40 months ago

I guess Mac users can't feel superior anymore, computer comes with Anti Malware...
Built-in security has always been a plus for an operating system. The things users hated (and still do) is trashy third party anti-virus programs that slow your computer down, get in the way, and generally make a nuisance of themselves. Ever since Windows 10 was released, Defender has been sufficient for anyone with good internet practices. Both operating systems still need extra security for people with bad security practices or who need extra protection, but their built in systems are sufficient for most. The thing Mac users hated about previous versions of Windows (Vista and earlier) was that a trashy third party antivirus was practically a necessity.

Oh, and if you had read the article you’d know that Macs already had anti-malware built in. The point of the article is that it’s gotten better.
Score: 28 Votes (Like | Disagree)
polyphenol Avatar
40 months ago
Having dealt with lots of different third-party anti-virus/anti-malware products on Windows (and a couple on macOS), I hate them all with a vengeance.

When protection is, effectively, built into the OS, you know that every developer will have had to deal with it.

When protection is one of a dozen, or more, products, you cannot realistically expect developers to have dealt with more than a small proportion.

Please can I have back the hours I have spent trying to identify why some software is not working on some machines - but is fine on others. Eventually finding that removal of anti-malware fixes it. But on the adjacent machine all is well with it installed.

(And removal of anti-malware software can be harder than getting rid of some actual malware.)
Score: 11 Votes (Like | Disagree)
max2 Avatar
40 months ago
Thank you Apple!
Score: 11 Votes (Like | Disagree)
TheDailyApple Avatar
40 months ago
This is good to hear. As Macs get more popular, there is going to be more and more malware targeting them.
Score: 11 Votes (Like | Disagree)
VineRider Avatar
40 months ago
I wish Apple was more forthcoming about what their anti-malware engines were actually doing, and when....I wish they would log the scans, log the definition updates, give the user some idea of the protection being offered.
Score: 11 Votes (Like | Disagree)
djam Avatar
40 months ago

Many thanks Apple but why quietly?
Apple have traditionally used Mac's "virus free" nature as a selling tool. You don't want to change that perception if you don't have to.
Score: 6 Votes (Like | Disagree)