by Luis Villazon Mac security has been in the news again recently and so once again, my Mac-owning friends and relations have been anxiously asking me if they should install this, scan that or reformat the other. And once again, I’ve been firmly telling them “no, no and definitely not”. First there was the Shellshock bug in the Bash shell. This could allow hackers to remotely access your Mac, but only if you’ve explicitly enabled remote login for all users (including guest accounts) or if you’re running a web server configured to allow scripts. Neither of these scenarios are common, or enabled by default.
The Mac.BackDoor. iWorm ‘virus’ is actually neither a worm, nor a virus
This affects a handful of server admins and almost no one else.
Then there’s the Mac.BackDoor. iWorm ‘virus’. This is neither a worm, nor a virus. It is a trojan, which exploits the greed and gullibility of people who think they can download free apps from The Pirate Bay. To install it, you’d have to change the default settings in Security & Privacy preferences. And anyway, Apple has already updated Xprotect (which is part of OS X) to detect this trojan, so it won’t let you install it. Even if you already had, the fake Reddit forum the trojan used to receive outside commands has long been shut down.
In other words, you’re fine. The reason potential Mac security issues make the news is because they are rare, not because they are common.