Apple has pushed an update to XProtect

Saturday, August 8, 2020 6:54 AM

Apple has pushed an update to XProtect

Apple has pushed an update today, to the data files used by XProtect, bringing its version number to 2128, dated 6 August 2020.

Apple doesn’t release information about what these updates add or change, and now obfuscates the identities of malware detected by XProtect using internal code names. XProtect’s Yara definitions include a new rule to detect MACOS.71915a8 and modifications to the existing rule for MACOS.8032420.

You can check whether this update has been installed by opening System Informationvia About This Mac, and selecting the Installations item under Software.

A full listing of security data file versions is given by SilentKnight


https://eclecticlightdotcom.files.wordpress.com/2020/07/silentknight19.zip