Skip to main content

Apple’s antivirus strategy for Mac has gone fully preemptive, but is that enough?

Apple made its Macs even better at fighting malware in recent years, but don’t relax just yet.

A recent blog post by Howard Oakley at the Eclectic Light Company details the changes Apple has quietly made in the past six months that mark a distinct change in strategy for protecting Macs, including spots where there are still holes of vulnerability, specifically for some older Macs.

Security and Privacy settings open on a MacBook.
Image used with permission by copyright holder

According to the post, the new malware protection on Macs is formidable, scanning files daily and even hourly in some cases, and automatically updating with new malware definitions as they come in.

Recommended Videos

“It has now gone fully preemptive,” Oakley wrote in the post. “As active as many commercial anti-malware products.”

There is a caveat, though. Your Mac needs to be running MacOS Catalina or later. Thankfully, most Macs out there in the wild can run Catalina, beginning with the 2012 MacBook Air and MacBook Pro. Only the iMac Pro from 2017 or later is compatible, however.

Mac malware protection used to be limited to the XProtect tool, which only passively scanned some files checking for malware against a list of pre-loaded known malware code. This often failed to find the newest threats because malware evolves so rapidly.

Then, in March of last year, Apple released the MacOS 12.3 update to Monterey. Hidden in the update, with no fanfare whatsoever, was a new XProtect Remediator anti-malware scanning tool. This tool is powerful at hunting down malware the moment new viruses are discovered by security watchers.

Your Mac is much safer today than it was a couple of years ago.

Part of the new scanning protocol includes a DubRobber scanner which performs scans lasting 15-35 seconds every hour, when the Mac isn’t being actively used. Every scan then adds an entry to a running log, which you can access via terminal by typing: ‘subsystem == “com.apple.XProtectFramework.PluginAPI”‘

This proves not only that the anti-malware is included in modern MacOS releases, but is alive and active. Your Mac is much safer today than it was a couple of years ago.

You shouldn’t rest on your laurels, however. Malware is an insanely profitable criminal business with low risk, which attracts all sorts of bad actors, from hackers in the basement to shadowy foreign government agencies. Definitions depend on an active community of digital security watchers , often volunteers with day jobs, who maintain databases of known malware code. These databases are used by programs like Microsoft Defender and Apple’s new XProtect Remediator to try and keep up with the threats.

Your Mac is a lot safer today thanks to this update and the hard-working heroes who hunt down malware across the internet. But you’re not completely safe.

Remember to never download files from strange sites on the internet, and especially never from a random email from someone you’ve never heard of. Keep smart on the internet and you’ll make the job much easier for your Mac.

Nathan Drescher
Former Digital Trends Contributor
Nathan Drescher is a freelance journalist and writer from Ottawa, Canada. He's been writing about technology from around the…
Apple silicon has made the MacBook Pro a consumer favorite
Someone using a MacBook Pro at a desk.

Apple’s computer lineup has greatly benefitted from its update to the M4 chip in 2024. The brand introduced the M4 MacBook Pro and iMac lines in the last year– and research has further indicated that Apple’s decision to shift from Intel processors to proprietary silicon was a solid move. It has made consumers favor Apple laptops more. 

According to statistics from Consumer Intelligence Research Partners (CIRP), MacBook form factors, in either MacBook Pro or MacBook Air made up 86% of Apple’s PC market share in 2024. Consumers especially favored the M4 MacBook Pro at a rate of 53%, while 33% of MacBook Air models shipped during the year, and 14% of iMac models. These figures vary only slightly from the year prior; however, CIRP noted that Apple appears to have weathered any fluctuations that may have occurred due to the COVID-19 pandemic. 

Read more
Mac users are now in danger of a well-known Windows phishing attack
Apple MacBook Air 13 M4 rear view showing lid and logo.

If you're using a Mac, such as the new MacBook Air, you might have to be careful. A phishing attack that previously plagued Windows users has now made its way to macOS, and it's easy to fall for it.

This was spotted by 9to5Mac. Researchers from LayerX have been tracking a well-known phishing attack that caused a lot of grief to those who were tricked by it. Previously, the main target of these hackers was Windows, but Microsoft was able to largely eliminate it -- up to 90% of all attacks on Windows PCs are said to have been fixed thanks to new updates to Edge, Chrome, and Firefox that block scareware.

Read more
Here’s how Apple’s first foldable MacBook might win me over
The Zenbook Fold 17 open on a table.

Rumors have persisted for years now that Apple is working on a touchscreen MacBook, but I’ve never been truly convinced. For one thing, I don’t see how a touchscreen could improve my MacBook experience enough to justify the inevitable price rise. This is Apple we’re talking about, after all, and there’s just no way that a touchscreen MacBook will possibly come cheap.

As well as that, I’ve long agreed with Steve Jobs’ belief that adding a touchscreen to a regular MacBook is an ergonomic nightmare. Constantly reaching up to the display is a quick way to exhaust your arms, and paining its users isn’t really part of Apple’s playbook. The Mac operating system isn’t designed for touch either, and in any case, adding a touchscreen would result in all manner of greasy fingerprints on your monitor. It’s never seemed like a good idea to me.

Read more