Path: csiph.com!fu-berlin.de!uni-berlin.de!individual.net!not-for-mail
From: Jolly Roger <jollyroger@pobox.com>
Newsgroups: comp.sys.mac.system
Subject: Re: Could Mac Files be Ransomwared via Windows XP Running in a VM?
Date: 15 May 2017 15:11:57 GMT
Lines: 40
Message-ID: <entuptF68e1U1@mid.individual.net>
References: <0001HW.D53CC867004C47F0B02919BF@news.astraweb.com> <enpaugF4hcqU1@mid.individual.net> <of8d8o$h5t$1@news.albasani.net> <enq7unFadupU1@mid.individual.net> <ofa5vi$ep8$1@news.albasani.net> <enroprFle3lU1@mid.individual.net> <ofabrk$vp8$1@gioia.aioe.org> <140520172116564213%timstreater@greenbee.net> <slrnohi2gt.mpt.g.kreme@snow.local> <ensl35Frf2tU1@mid.individual.net> <slrnohif03.17gl.g.kreme@snow.local>
Mime-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
X-Trace: individual.net 0aDggSAt8ghXPQL8oWPsjAAsRr9AOlCVN+/qrobDL+4EYvH6Eh
Cancel-Lock: sha1:7Bzln3edoFwYLyRTdEIM2pVQLek= sha1:OMXc376NRgAEi2bofFdjakQpIKI=
User-Agent: NewsTap/5.2.6 (iPhone/iPod Touch)
Xref: csiph.com comp.sys.mac.system:106879

Lewis <g.kreme@gmail.com.dontsendmecopies> wrote:
> In message <ensl35Frf2tU1@mid.individual.net> Jolly Roger <jollyroger@pobox.com> wrote:
>> Lewis <g.kreme@gmail.com.dontsendmecopies> wrote:
>>> In message <140520172116564213%timstreater@greenbee.net> Tim Streater
>>> <timstreater@greenbee.net> wrote:
>>>> And, en plus, does OS X anyway not come with Apple's built-in
>>>> anti-malware that is automatically updated to counter what few threats
>>>> there are? So why should I use anything else?
>>> 
>>> XProtect is very good, but it is reactive. It did nothing for the people
>>> who downloaded the infested Handbrake this month before the issue was
>>> discovered (what was that, 4 days worth of downloads?).
> 
>> Antivirus software did nothing for them either. It's also reactive by that
>> definition.
> 
>>> Most "anti-virus" software is nothing more than a rootkit that pwns your
>>> computer, however that is not at all what MalwareBytes is, it's simple a
>>> scanner. No kernel extensions. I don't even think it installs launch
>>> services unless you setup periodic scans.
> 
>> Malwarebytes also did nothing to protect against the Handbrake Trojan
>> though. It would only see it after you ran a scan after being infected. 
> 
> Malwarebytes on the Mac doesn't *prevent* anything, 

Glad you agree.

>> The Handbrake trojan displayed an unsolicited dialog box asking for a
>> password.
> 
> Which is so common 

Not for Handbrake, no. 

-- 
E-mail sent to this address may be devoured by my ravenous SPAM filter.
I often ignore posts from Google. Use a real news client instead.

JR