krs

Aren't you glad you're using a Mac?

BBC NEWS | Technology | Malicious programs hit new high

Note the break in the vertical axis.

Kris Atomic

A five fold increase is insane?

I am new to the Mac world. So far so good.

cheers, Kris

RKM

Which brings me to ask what about spyware on the Mac. Do we need to be concerned with this and if so are there any programs out there to weed out such malicious items?

How do you know if one of these so called freebee programs isn't really sending personal information off your machine back to a host?

krs

If you're worried about that install "Little Snitch"

RKM

I have installed it but really don't understand how to use it just yet.

krs

I tried version 1 for a short while quite some time ago and trashed it again.
Not tat it didn't work; I just didn't realize how often my Mac made outgoing valid connections.
Just installed Little Snitch 2.02 to try it out and see what is different but I can't complete the installation because one has to restart the Mac and I'm in the middle of some video conversions in the background.

But isn't the way you use it obvious? It should be with a good Mac application.

I assume you just turn it on - if it sees an outgoing internet connection attempt by the Mac it will flag it and ask if the connection should be allowed.
And there should be an option to always allow certain type of connections.
My Mac for instance keeps it's clock in sync with some clock on the net, so it goes and checks that every once in a while - it also monitors certain eBay auctions for me - these are hings you want Little Snitch to allow automatically.
You really only want it to block an outgoing connection that shouldn't happen.

nowlive

RKM, you have presented some good inquiries with regards to the security of OS X. In my opinion I don't feel that it is necessary to express significant concern pertaining to malware on the Mac. The reason why I don't feel that it is necessary to express such concern is because from an architectural stand point of view; if an assessment of any UNIX operating system were performed, evidence would suggest that there is an enforcement of multiple layers that contribute to a comprehensive and robust security architecture.
However, when put into perspective it is better to be safe then sorry. I would rather avoid possible embarrassment then face it.

My recommendations are as follows:

Average home user configuration:

1) Turn on your OS X firewall.

2) Make sure that the Software Updater is scheduled to check on a daily basis.

3) Within Safari disable "Open safe files after downloading".

4) Ensure that under the security preferences that "Require password to unlock each secure system preference" is enabled.

5) Install and run ClamXav.

6) Disable UPnP or NAT-PMP on your router/internet gateway. (Optional)

For those exposed to a more hostile environment such as a school network:

1) Install a good "quality" easy to manage security solution. My personal recommendation is Sophos.

Sophos Computer Security SBE - anti-virus and firewall

2) Make sure that the Software Updater is scheduled to check on a daily basis.

3) Within Safari disable "Open safe files after downloading".

4) Ensure that under the security preferences that "Require password to unlock each secure system preference" is enabled.

I hope this helps.

krs

I would add: Enable Stealth mode in the OS X firewall (under advanced)

BlueMax

With the Mac population increasing as it is, couldn't this malware eventually cross over?

Is it possible to write Mac malware? ...or is there something about the OS that makes hidden actions like that impossible?

The only thing I can see being possible is trojans...

RKM

Thanks for the advice NL. Being somewhat of a novice on the Mac this sure helps!

Also yes Little Snitch is easy to understand the concept but I am just unsure of what OSX requires as far as connections go, but I guess it's a learning process just like anything else.