Is Mac Vulnerable to Malware and Adware? by Zehra Ali
Last week, malware bytes researcher, Adam Thomas found that Mac malware displays some troubling behaviors which include intercepting encrypted web traffic to inject ads.
Previously, Mac has not been targeted by hackers as often as Windows systems. However, since the time Mac become popular, cyber-criminals are gradually pointing and aiming their attention toward the board. This is something really bad and alarming news for Mac users.
Some estimates reveal that Mac-specific malware increased to 270% in 2017, but threats are still not as prevalent as on Windows systems. However, if you are targeted once than you could face some serious effects like; it can lead to the loss of important files and pictures, identity theft, and can even lock you out of your machine.
As far as sensitive data such as photos are concerned, the hackers could exploit a vulnerability in apps such as Mac’s Similar Photo Cleaner.
The researcher told that malware is often found on a bland and ordinary disk image file, lacking the usual decorations that possibly will make it look like a legal and valid installer. When the system is opened so, the apps do not show an installer display but on the other hand, unnoticeably installs its components.
The only proof and indication that it is doing something come from two verification requests. The first request is about to approve changes to Certificate Trust Settings while the second request is about permitting something known as ‘’spi’’ which is used to control the network configuration.
The malware was released during the second stage, downloaded by other malicious installers. Thus, there is no need for a user interface, since the user will not be able to see anything more than the password requests and it will be within the framework of another installer.
From where a ‘’malware’’ gets in and how to detect it?
The adware and malware frequently come packed in installers for other software. This happens because something was downloaded illegally from any torrent or pirated site. At times it is because it has been inserted to a legal and valid software by any crooked download site.
Malware also gets in when a developer decides to use an adware-riddled installer, which is provided with incentives and motivation by the adware creator to distribute their software. Moreover, it can even be installed by deceitfulness and fraud too, by faking to be something that is not so to fool the user to install it.
The malware and adware can be detected are advertisements start appearing on Mac where they should not. Also, when adware changes browser’s home page and search engine settings, may also initiate redirects from legal sites to the sites which are created for benefiting the adware developer. Furthermore, if you start witnessing some secondary problems like web pages displayed incorrectly or crashing of the browser, then malware and adware had to get into your system.
How to remove it?
There are different ways by which malware and adware can be removed. But the most important thing which you should keep in mind before applying any method of removal is to make up a backup of your system to avoid any loss of data.
Following are the methods by which we can easily remove the malicious software from Mac.
1a) Scan with malware bytes anti-malware for Mac:
The first and easiest method/step to remove malware and adware is to download and run = anti-malware for Mac.
The authentic Mac antivirus will scan your system and will help to remove adware automatically. It is recommended to pay close attention to any occasions or triggers, as you need to decide whether to delete or not delete particular files or may need to restart the system and then do the scanning. It is important to read the prompts thoroughly and make sure you understand and follow all the given instructions.
1b) Manual Removal:
If you are using Mac OS X version which an antivirus like malware bytes antivirus (MBAM) does not support, then you can opt manual removal method. In this method be very careful and follow all the directions and instructions. However, for some adware, there are some risks associated with manual removal thus show extra care in this case. Also, there are some adware which can cause damage to your system, and it might become unable to start back up if the instructions are not carefully followed.
2) Check for other causes:
At times it might happen that you won’t found any signs of adware. In this case, you might be on a cooperated network or any ad-supported Wi-Fi network. It may also happen that you would be looking at a site which is either a bad site or is blocked.
3) Report a New Adware:
If you have followed the instructions given in steps first and two, but you find there is no adware in step 1 while the test in step 2 indicates that the problem is basically due to adware. In this case, you can contact your anti-malware for Mac support team and choose contact support from the help menu.
Apple’s New Feature to Improve Security
Considering the need for protecting Mac from different internet threats Apple has added some new features to improve security and to provide better functionality to the users. The newly added features are as follows:
Gatekeeper:
This is a built-in tool which is designed to stop users from downloading unapproved Mac apps. There is a serious kind of risk of malware-laden applications posing as legitimate software when you are in a third-party marketplace. In case the app s not digitally signed and approved by Apple so, the gatekeeper will warn the user. The Mac’s password protection also helps for gatekeeping various purchases and downloads.
Sandboxing:
This features guarantees that they are inaccessible and separated from the decisive parts of your machine. Moreover, this feature also provides additional security in case the system is hijacked by the attackers.
Plug-ins:
There are specific third-party technology platforms which can impose a further risk to Mac users. To avoid this situation, Mac OS is typically designed to block certain plug-ins like Adobe Flash Player, Silverlight, QuickTime, and Oracle Java if they are not updated to the last and secure version.
FileVault 2:
This feature provides full disk encryption to keep data protected when a hacker/attacker attempts to get access to information on your system.
Anti-Phishing:
Nowadays, phishing is very common. They are intended to fool or trick the receiver of an email by clicking on a malevolent link or will either take you to the specially made site where they inquire for log-ins, financial and other personal data. The site can also download ransomware to lock important files or Mac until you pay the required amount. To overcome this situation, Apple’s safari browser has made anti-phishing technology to spot these sites.
X-Protect:
A new built-in malware examining tool now works in the background. If your attempt to open a file or download an app so, first it will check the file against a blacklist of known malware and will also flag anything doubtful. This built-in tool needs no user interaction to work with and is on by default and wouldn’t slow down Mac.
However, its efficiency can suffer if it’s not updated to the latest Mac OS version.
Conclusion
Although now like Windows system Mac also gets vulnerable to malware and adware the positive side is that there are third parties looks which have helped to boost the built-in security of Mac to increase protection against the increasing internet threat levels. Apple has introduced certain features which are working well enough in ensuring the security and protection of users as well as Mac too.
About the Author:
Zehra Ali is a Tech Reporter and Journalist with 2 years of experience in infosec industry. She writes on topics related to cybersecurity, IoT, AI, Big Data and other privacy matters on various platforms. She is also the Editor at PrivacySniffs.
The post Is Mac Vulnerable to Malware and Adware? by Zehra Ali appeared first on Hakin9 - IT Security Magazine.
from Hakin9 – IT Security Magazine https://ift.tt/2D9qRVx