Malwarebytes Labs has published its 2021 report on malware, reflecting on the state of malware threats in 2020 based on detections in the Malwarebytes apps and services. Overall malware detections decreased 38% on the Mac, though Mac malware in businesses increased 31%. It’s worth keeping in mind that actual malware—the truly malicious stuff—accounted for just 1.5% of all Mac detections in 2020, with the rest being adware and so-called potentially unwanted programs (PUPs), which is just a nice term for crapware like browser toolbars that clutter your browser, display ads, and track you.
The Mac section of the full report contains some disturbing details, such as a description of the bizarre ThiefQuest malware, which fakes a ransomware attack while exfiltrating personal data from your Mac. Also troubling is how the report notes that Apple security measures introduced in macOS 10.15 Catalina prevent users from uninstalling some PUPs without disabling System Integrity Protection. The report concludes:
Apple’s days of sitting on the fence are now over. With the protection involved in the system extension entitlement, there is no longer any middle ground. At the time of writing, Apple is implicitly siding with the PUPs, providing them protection against removal. Time will tell if Apple decides to side with those who stand against these PUPs, by revoking their entitlements.