Web Excursions 2022-06-22

Antivirus for macOS: the good, the bad and the ugly | dataJAR

• While this is a common view shared by many, let us put some history behind this.

  • In 2006, Apple ran a set of media campaigns stating ‘hey, I am a Mac, I do not get viruses’,

    • opening up the issue of antivirus on the Mac which, for most IT professionals, is a moot subject.

  • I mean, if Apple says it is OK, then we will get back to polishing our Xserves.

  • The truth behind this perception was at that time the Mac was not being targeted by virus makers as frequently as Windows was.

• Just because a piece of software works well on the other platform, it does not mean it will be as effective or work at all on macOS.

• Firstly, hop onto the company’s website and look for the vendor’s documentation page.

  • See if there is any documentation for macOS.

• Secondly, do not be afraid to drop the vendor’s support team a message before you start any project of this undertaking.

  • You can even make a simple enquiry such as:

  • “Hey I am looking to install this on some devices, is there anything I should look out for?”,

  • as this will help you ascertain how long it takes for them to respond

  • (which will, regardless of the software you choose, will always be needed)

• Finally, have a look for any pre-populated mobile configuration profiles

  • that might be available to download directly from the vendor’s website.

• It is worth mentioning at this point the software recommended by the InfoSec team might be great and works exactly as you hoped.

  • However, this is not always the case and my recommendation at this point is to always push back.

• A common theme within organisations is the Mac must have the same antivirus software as the other platforms;

  • this is simply not the case

• If a piece of software seems too good to be true, there is always a reason, even if it might work straight out of the box.

  • Always try it on a few different models, such as both Intel and Apple Silicon Macs, as well as on a wide variety of macOS versions.

  • Just because it works well in one scenario, does not mean it will work well on others.

    • they do not always play well with the Mac’s own inbuilt protection.

• Another trait to be aware of is how the software is kept updated

• If a provider gives you the packages to deploy each time, I would also avoid this.

  • You do not want to be packaging up each version and remembering to check in on the console for any releases.

• What do I look for when selecting a product?

  • rapid, effective technical support

  • fits your needs and the needs of the business

  • day-one support with OS releases

  • good technical documentation

  • provided with configuration profiles to deploy via your MDM

  • no sudden CPU spikes/machine slowness

  • seamless updating platform

  • reporting

  • automated quarantine/remediation

Schwab’s Robo-Adviser Hid Some Fees - Bloomberg

• SWIA’s and CSIA’s ADV brochures stated that

  • the cash allocations in the SIP portfolios were “set based on a disciplined portfolio construction methodology

  • designed to balance performance with risk management appropriate for a client’s goal, investing time frame, and personal risk tolerance, just as with other Schwab managed products.”

• This was false and misleading because the cash allocations were actually pre-set in order to reach minimum revenue targets for the Respondents

• It is such a basic move in finance:

  • Find a way to do a valuable thing without charging for it explicitly,

  • because you have found a way to charge for it implicitly

• Really Schwab’s mistake was pride:

  • It had figured out a way to hide fees in an investment product,

  • people noticed and said “hey there are hidden fees,”

  • and Schwab’s management got mad and publicly pretended that those hidden fees were something else