Everything you need to know about Mac scareware

How to spot fake Mac security software, how to get rid of it and what to do to stay safe

1 2 3 4 Page 4
Page 4 of 4

Apple's increased sales of Macs may have triggered the move by the gang. While Windows PC sales have stalled -- and still greatly outnumber Mac sales -- Apple's sales of desktops and notebooks has outpaced PC sales for 20 consecutive quarters.

Where there's a market for malware, there's malware.

What can I do to keep MacDefender and its like off my Mac? Lots of things, actually.

For one, be wary of search results on hot news topics, since scareware scammers constantly "poison" those results to push their sites higher on the list. When MacDefender first appeared, it was spread through sites that ranked high on Google Image searches, and those resulting from searches for information on Osama Bin Laden's death.

For another, don't install anything you haven't downloaded yourself.

If you browse with Safari, head to its Preferences screen, then uncheck the box marked "Open 'safe' files after downloading" at the bottom of the General tab: That keeps Safari from automatically opening the installation screen of MacDefender.

Only type in your account password when installing software you actually want and asked to be installed. If the account password dialog pops up and you don't know why, don't enter your password.

Speaking of accounts, the newest MacGuard scam doesn't require a password when you're running under an administrator account. You might want to switch to a standard account instead, which will prompt you for a password when MacGuard tries to install. Check out this Apple support document for how to set up a standard account in Snow Leopard.

Don't pay for security software you haven't asked for. Don't enter your credit card information in any prompt to register such software.

Consider adding an antivirus program to your Mac. Sophos gives one away free, and others, including F-Secure, Intego and Symantec, sell products that will block scareware and remove it if it's infected your machine.

Click arrow button to play video. (Adobe Flash is required. Some browsers may require two clicks to start the video.) Poisoned Google Image results steer victims to Mac scareware downloads. (Video: F-Secure.)

Is the Mac now in the same security boat as Windows PCs? Not by a long shot.

Windows remains the most popular target for hackers because it's the most popular platform on the planet. But the appearance of MacDefender marks a change in criminal tactics that you'd be foolish to ignore. Scammers are nothing if not copy-cats.

I want a crystal ball...what's next for Macs and malware? Assume that MacDefender is the first of a wave of scareware aimed at Macs. Any success by MacDefender's makers will likely be copied by other groups that already have experience shilling bogus security software to Windows users.

And there are certainly steps those criminals can take that will up their game, whether that's using unpatched browser or plug-in vulnerabilities to exploit a Mac -- and then silently plant scareware on the computer -- or relying on other long-practiced social engineering tactics, including spam that draws users to malicious sites or files attached to email messages that purport to be legitimate documents but are in actuality a scareware installer.

Gregg Keizer covers Microsoft, security issues, Apple, Web browsers and general technology breaking news for Computerworld. Follow Gregg on Twitter at @gkeizer or subscribe to Gregg's RSS feed . His e-mail address is gkeizer@computerworld.com.

Copyright © 2011 IDG Communications, Inc.

1 2 3 4 Page 4
Page 4 of 4
  
Shop Tech Products at Amazon