- Check Macbook For Malware
- How To Check For Malware On Macbook Pro
- How To Check Your Macbook Pro For Malware
Red Canary researchers say that this 'Silver Sparrow' malware forces infected Macs to check a control sever. Apple's Mac lineup consists of MacBook, MacBook Air, MacBook Pro, iMac, Mac. Click on the Apple menu icon in the upper left corner of the screen. Select App Store to open the Mac App Store. Click on the Updates tab at the top of the Mac App Store window. Install all relevant updates. Protect your Mac from malware. MacOS has many features that help protect your Mac and your personal information from malicious software, or malware. One common way malware is distributed is by embedding it in a harmless-looking app. You can reduce this risk by using software only from reliable sources.
how to get rid of malware on macComputer viruses hold a sweet spot between boring, everyday occurrences, dating back to the 70s, and dramatic, science fiction fueled monsters that will haunt us in our new information-driven world.
One may ask, 'Do you need antivirus to protect your Mac?' The reality is, all computers, even Macs, are vulnerable to malware (short for malicious software). While Apple takes a lot of security precautions, how secure your Mac is depends on your knowledge of how to check for viruses and how to remove them.
Whether you want to know how to remove virus from MacBook Pro, MacBook Air, or iMac, learning to keep your information safe first is necessary and easy, with a few tips from the professionals.
Get Setapp to protect Mac from malware
Your computer deserves to be healthy. Download Setapp, an apps toolkit that covers reliable protection methods against any kind of malware.
How to scan your Mac for a virus
Why checking your Mac for viruses is important? If a computer virus was the only thing to watch out for, this world would be a simpler place. Malware, adware, spyware, malicious files, worms, trojans, phishing software, you name it, you should check for it. The old way of thinking was that because there are more PCs than Macs in the world, the 'virus people' would focus on them instead of Macs. But, we're not in the 2000s anymore. In fact, in 2018, Apple moved to the fourth position in global laptop shipments. This means, Macs are no longer shiny white boxes that are meant for fun and entertainment.
Not only do we run our businesses off Apple devices and different versions of macOS but we also store family photographs, send out sensitive info — and, thanks to cloud computing, each device is synchronized. Unfortunately, this means your Mac could be a far juicier target than the PC sitting in some corner cubicle.
Know what a Mac virus is
Most of us are familiar with recognizing what a virus looks like thanks to its atrocious design and alarming vocabulary. However, not all viruses take the shock-and-scare approach to getting on your Mac. The latest adware could look like an Adobe Flash Player installer, but is, of course, fake. Not only does it trick you into thinking it's something as normal as Flash, but the installed adware then pretends to be a virus scanner. It shows you bogus problems and encourages you to fix them by giving over sensitive information.
Other forms of viruses could look like Microsoft Office files (e.g. Excel sheets, Word documents), Adobe Photoshop add-ons, as well as music and movie files that you get from BitTorrent or other file sharing programs. But the most common file format that a virus takes is a .dmg file, because it was created by Apple itself to help install good software on your computer. Your task in securing your Mac is to look out for .dmg files showing up when you're trying to install something. If you're ever trying to download something you know is supposed to be an image, music, movie, or document, but you get a .dmg file instead — that is as red as a red flag gets in terms of viruses. Do yourself a favor and delete that file immediately.
Keep Mac virus sources in mind
When it comes to having your Mac infected by a virus, we probably expect the attack to come from a stranger. Truth be told, a lot of viruses come from our friends, family, and colleagues, who unfortunately became the primary victim and are now unintentionally passing their viruses to you.
A popular malware virus of 2017 was embedded into a Word document — a Mac Word file, not a PC one. In 2018, Apple discovered flaws in their Intel processor chips that could lead to two kinds of very ambitious strains of Mac viruses too. It's wild to think that even iPads and iPhones can contract malware.
How to check for malware
In an ideal world, scanning for viruses and the other methods for malware removal should be automatic and happen nearly continuously. In reality, you can consider yourself reasonably safe if you scan your Mac close to once a week. Fortunately, there are quite a few ways to make sure you are as protected as possible.
A good start to scan your Mac for viruses is to see whether you have applications installed that you don't recognize:
- Go to the Applications folder via Go > Applications in Finder or using the shortcut Shift + Command + A.
- Scroll through the list and delete any unknown applications.
- Then empty the trash.
The second step you should do is check for browser hijackers and adware extensions:
- Go to Safari > Preferences. See what the Homepage URL is currently set to and correct if needed.
- Then proceed to the Extensions tab and uninstall any you don't recognize, as they could spy on you, save your private data, and redirect you to their malicious websites.
How to run a Mac virus scanner and stop viruses from stealing your information
It's a common misconception that viruses only happen to people who are gullible, ignorant, or technologically illiterate. The stigma is that hackers prey on people, when in reality, they prey on behavior.
Our basic assumption with Macs is that we expect Apple and our applications to have done all the security work for us. In truth, every user has to adjust their own behavior when using their Mac.
Do you use public WiFi? Consider getting a Virtual Private Network (VPN) to encrypt the connection between your laptop and the external network. Shimo is a great VPN manager app that will help you here. While using it, raw information (whether sensitive or not) can't be fed to any malicious programs lurking on your Mac, and hackers on the same network won't be able to decode anything you're working on.
Speaking of encryption, Macs using OS X Lion or later come with the option to encrypt their hard drives using FileVault 2. Although encryption won't prevent viruses from entering your computer (for that, you'll need a scanner), it would still be very helpful in stopping viruses from stealing your information. To turn on FileVault:
- Go to System Preferences
- Select Security & Privacy
- Navigate to the FileVault tab
- Choose Turn On FileVault
Keep your Mac secure and virus-free
Trademark signs of something being wrong with your Mac: slow processing memory, bloated disk space, intense CPU usage, and network speed lag. Unfortunately, viruses don't live in an easy-to-find location like your computer's desktop. They can be embedded within an application, most notably, your favorite web browser, where it's easier for them to view what you're viewing and track what you're typing. If you kept on seeing weird websites taking over your search bar, it's a sign that your browser has been hijacked. Other applications can get corrupted or infected too, especially if they have particularly weak security systems. Another example could be an email app you use or an open-source application that is behind on their patch upgrades. Check out how to get rid of malware on mac.
If you think one of your applications is infected, a typical knee-jerk reaction would be to delete the whole thing and redownload it. Often, this will do the trick, but there are simpler solutions available. Clearing the application's cache should always be your first step, and, if there are optional hidden files, consider removing them as well.
Scan your Mac for viruses with CMM X
Run an instant malware scan to identify and remove suspicious files from your Mac. There's no tool that can do it better than CleanMyMac X.
To remove any application's cache and get rid of Mac malware from the Library folder:
- Use the shortcut Shift + Command + G to Go to Folder
- Type ~/Library/Caches and choose Go
- Delete any particular files inside the folder
If you are unsure about deleting cache files manually, use an app like CleanMyMac X:
- Launch CleanMyMac
- Go to System Junk and click Scan
- When the scan is complete, choose Review Details
- Select User Cache Files and pick the caches you'd like to delete
- Click Clean
In addition, CleanMyMac now features a Malware Removal function, using which should become your weekly habit.
- In CleanMyMac, choose the Malware Removal tab
- Click Scan
- Follow the instructions given. Hopefully, it should say your Mac is clean most of the time.
Unfortunately, not all viruses are easy-to-understand files that just sit on your computer. Sometimes they are root certificates that intercept your passwords and messages and send a copy to hackers. To effectively secure yourself from this, only download apps with valid developer certificates. Which ones are those? It's hard to know but Apple built a feature that could help you here.
- Go to System Preferences
- Select Security & Privacy
- In the Allow apps downloaded from: select App Store and identified developers
You are well on your way to being protected from malware now. But, the truth is, simply avoiding viruses is not enough. You need to be proactive — it's time to get a virus scanner.
Check viruses like a pro
If you want complete Mac security, there is no better tool than CleanMyMac X, which can effortlessly scan for all the latest viruses, malware, spyware, and more. Just launch the app on the regular basis and click the Smart Scan option to inspect your Mac for any suspicious activity, besides other suggested features for optimization and cleaning out old files.
Remove viruses from Mac completely
Using a tool like CleanMyMac makes getting rid of viruses, of all shapes and formats, very easy. After the scan, it tells you what it's found and gives you the option to remove it completely right then and there. Additionally, it will give you all kinds of other great options on how to optimize your Mac's performance.
As mentioned above, hackers who want to steal your information don't target you specifically, they target your behavior. So, with this in mind, change your behavior when it comes to using your Mac in potentially unsafe ways. Recognize that viruses come and go, all the time, and across many different file formats. If you get a virus, you're not ruined.
Arm your computer with encryption tools (like FileVault and a VPN), so that your information can't be stolen. Practice a healthy dose of skepticism when downloading files. But, most importantly, get professional apps that bring you the most results, like CleanMyMac or Shimo — all of which are available on Setapp for your to try free. So get a scan now and see what it says.
Meantime, prepare for all the awesome things you can do with Setapp.
Read onSign Up
I think my Mac has a virus!
Basic floor plan software for mac. If this is your first thought, then the next one is probably: how can I check for a virus on my Mac? Whatever your circumstances are, don't panic!
I also suggest you read the entire post without rushing to implement 'expert' recommendations. If you indeed have a virus, it happened due to a lack of knowledge, and the same lack of knowledge can make things worse. First, understand what the problem is and then try to fix it.
So, in short, here's what you should when malware is a suspect.
If you think that your Mac has a virus, the quickest way to verify it is by scanning the computer with the Malwarebytes for Mac program. Download a free version of Malwarebytes, and it will fully scan your Mac for malware in less than a minute.
Myth About Macs Being Free From Viruses
The myth that Macs are protected from viruses is just a myth. While Macs are less targeted than Windows, they still have their share of malware.
For instance, KeRanger ransomware was detected in 2016 and it designed for macOS. It even affected several Macs in Apple headquarters in Cupertino, CA.
In 2019 there were several Mac-specific malware programs detected:
- OSX/Linker – exploited a zero-day vulnerability in macOS
- LoudMiner – uses your Mac to mine Bitcoins
- OSX/NewTab – adds new tabs in Safari with malicious web sites
- NetWire – spyware
So, if you thought you were shielded from viruses because Macs don't get viruses, you were wrong.
Did you know?
The first ever virus was written for the Apple II computer by Rich Skrenta when he was 15 years old. The virus did not do any harm to computers; it displayed a following poem on the screen:
Typical Signs That Your Mac Might Have Malware
There are several symptoms that may (or may not) indicate that the Mac was infected with the malware:
- Your Mac is slow or crashes unexpectedly
- The startup disk is running out of space
- Pop-ups appear on the screen when you are online or offline
- The browser home page or search engine has changed without your permission
The symptoms mentioned above can be caused by other things, however. For instance, you may be running Time Machine backups that taking entire disk space.
If the browser home page has changed after installing an app, sometimes all you need is to change it back.
But if you suspect something, it never hurts to scan the Mac for malware.
Will Your Mac Tell You If You Have A Virus?
The answer is as always: it depends.
macOS has two malware protection mechanisms: Gatekeeper and XProtect.
The way the Gatekeeper works is by setting the Quarantine Flag when the file gets downloaded. So, when a user opens an app with this flag, the Gatekeeper will check if the app came from a trusted developer or not. If not, then it will pop a warning message.
This message does not necessarily mean that the app is malware. It only means the macOS does not know anything about it. It is possible to override the warning by going to the Security and Privacy pane in the System Preferences app.
XProtect is another built-in protection system on macOS. It contains definitions of many malware programs.
When the Gatekeeper on Mac checks the file marked with the Quarantine flag, it also searches the file signature in a malware database provided by XProtect. If the signature is found, then your Mac will tell you that you have a virus.
For instance, in April 2019 the XProtect was updated to include TrojanSpy.MacOS.Winplye, a Windows file that can run on Macs.
So, if you happened to download an app that contains this Trojan, the XProtect would prevent it from running. However, there is a caveat. You must have the security update installed on your Mac.
So, here is rule number 1 for anyone who wants to make sure that their Mac is secure: Always have automatic updates turned on.
Here's What To Do If You Think Your Mac Has a Virus
Now, when we know, all the theory behind viruses and malware, let's do some practical things.
When I called the Apple support and told them that my MacBook is slow the first thing they suggested to restart the laptop in Recovery mode. The next step was to install the antivirus.
If you have reasons to believe there is a malware on the computer, skip the first and download the antimalware program.
The Apple support guy directed me to install Malwarebytes (affiliate). He and I enabled the screen share and here is exactly what he told me to do:
- Start Safari browser
- Type Malwarebytes in the bar and click on the link
- Click on the Free Download button
- Open Finder and go to the Downloads folder
- Double click on the Malwarebytes install file
- The installer program will start
- Keep clicking on Continue, Agree, and Install keys
- The app will require to enter the admin password
After installation, Malwarebytes will offer 14 days of Premium option for free. Click Not Now. You don't need it.
When Malwarebytes starts, click on Scan pane on the left and then click on Start Scan. Wait until the scan finishes.
If Malwarebytes finds 0 threats congrats! If your MacBook is still slow, then there may be reasons other than malware.
Read my post about fixing the slowness: What To Do If MacBook Running Slow And Freezing
If a virus was detected, click on Confirm button to let Malwarebytes delete the threat, then restart the Mac and run the scan again. If the next scan finds new threats keep restarting and scanning until all threats are gone.
Choosing The Best Antivirus
Is free Malwarebytes a good antivirus? For a long time, I thought so, and I was actually actively recommending it until I did the following test.
I injected my MacBook with 117 malware samples (including Trojans and Ransomware). I tested 13 antivirus products.
The result surprised me – only one product (or two, depending on how you look at it) detected 100% of malware.
You can check the results of my test here: Best Malware Detection App for Mac Removes 117 Viruses In 5 Min
There are other antimalware programs besides MalwareBytes, and many of them are good.
The natural question is which one to choose?
I tried to find the answer, and here are my findings:
There are good several antimalware software choices. The most known are Norton, Intego, Bitdefender, Kaspersky, Trend Micro, Avast, VIPRE.
Check Macbook For Malware
You can search for rankings published by bloggers, but the thing is they are more likely to promote their affiliate links.
So, how do you choose? The decision depends on your browsing habits.
If you are relatively conservative and cautious when clicking on links, then free AV may be good enough for you. Keep scanning your laptop periodically, and you'll be fine.
If you often visit sites that likely to have malware (torrents, adult, social media) then invest in active protection provided by paid versions.
When choosing the antimalware, consider testing at least two solutions. Then select the one that easier to use. Also, see if it's using too much CPU with the help of Activity Monitor. The last thing you want is an antivirus that slows down the computer.
To learn more check out my post:
Does Antivirus Guarantee Protection
Unfortunately, not. There is a term called zero-day vulnerability.
The usual cycle goes like this: someone finds a vulnerability in the software, e.g., in macOS. The first day the vulnerability is found is called zero-day.
The hackers will create software that exploits the vulnerability, and every computer is at risk even the ones that have an antivirus installed.
Then antivirus companies find a solution which needs to be downloaded and installed on the computer. The shorter the period between discovering a vulnerability and the fix fewer computers will be affected.
Bottom line, antimalware products protect from known viruses; they do not protect from malware, which was not written yet.
A Side Note On Ransomware
Ransomware is probably the biggest reason why you would want to have active antivirus protection.
With other types of malware: adware, spyware, Trojans, you can download the antimalware software, scan and in most cases, remove the threats.
When you found out about the Ransomware in most cases it's too late: the disk was already encrypted and the time to pay the ransom is ticking. There is no point downloading anti-malware software because it will not be able to decrypt your data.
However, there are exceptions. In some cases, the effects of the Ransomware can be rolled back.
There is a web site nomoreransom.org which was founded by several organizations in order to fight this issue. They have a list of malware that they can help to fix.
First, you have to identify the type of Ransomware you encountered by following their instructions. If the threat is in their list, they will provide decryption tools.
How to prevent Ransomware
While preventing it is hard, there is one thing you can do to minimize the effect. You should invest time in a backup strategy.
The good thing is that Apple has a good backup software called Time Machine. I wrote an article which will teach you how to use it properly:
In case your MacBook was hit by Ransomware all you need is to restore the previous backup and scan for viruses.
Here's What I Do To Stay Secure
How To Check For Malware On Macbook Pro
- I never open links from emails. If I do, I always check the sender of the email first and then check where the link is pointing to.
- I always submit downloaded packages to VirusTotal before running on my Mac.
- I make backups with Time Machine.
- I save my documents in DropBox. Even if the document was damaged by malware, and the damaged file was uploaded to the cloud, the DropBox keeps a 30-day history of my documents versions, so I can always rollback to the non-damaged version of the document.
- I use Norton 360 Deluxe to scan my MacBook periodically.
- I have automatic updates turned on.
Topics:
How To Check Your Macbook Pro For Malware
Image Credits: Pixabay, NoMoreRansom, Wikipedia