Adware:MacOS/Adload.A

Guidance for end users

• Scan your device regularly using Microsoft Defender Antivirus or Microsoft Defender for Endpoint on Mac and ensure your operating system and applications are updated. 
• Ensure to keep Microsoft Defender Antivirus or Microsoft Defender for Endpoint on Mac updated.
• Avoid using unknown binaries from free file-hosting sites, file-sharing networks, and third-party installers.
• Choose custom or advanced installation settings.
• While installing any third-party apps, read the terms and conditions carefully.
• Avoid installing additional apps or offers that are displayed during installation.
• Perform a system scan regularly.
• Ensure to do a file backup regularly.
• Change the password regularly for your device and shopping sites.

Guidance for enterprise administrators

Recommendations for Microsoft 365 Defender customers

• Restrict access to privileged resources like Launchdaemons, LaunchAgents folders, or Sudoers file through OSX enterprise management solutions. This helps in mitigating common persistence and privilege escalation techniques.
• Encourage users to use Microsoft Edge—available on macOS and various platforms—and other web browsers that support SmartScreen, which identifies and blocks malicious websites, including phishing sites, scam sites, and sites that contain exploits and host malware. Turn on network protection to block connections to malicious domains and IP addresses.
• Only install apps from trusted sources, such as the software platform’s official app store. Third-party sources may have lax standards for the applications that they host, allowing malicious actors to upload and distribute malware.
• Enable potentially unwanted application (PUA) protection in block mode to block and automatically quarantine potentially unwanted applications. PUA protection blocking takes effect on endpoint clients after the next signature update or computer restart.
• Check your perimeter firewall and proxy to restrict servers from making arbitrary connections to the internet to browse or download files. Such restrictions help inhibit malware downloads and command-and-control (C2).
• Turn on cloud-delivered protection and automatic sample submission on Microsoft Defender Antivirus. These capabilities use artificial intelligence and machine learning to quickly identify and stop new and unknown threats. 
• Prevent the use of unauthorized apps with application control.
• Run the latest version of your operating systems and applications. Deploy the latest security updates as soon as they become available. 
• Educate end users about preventing malware infections. Encourage end users to practice good credential hygiene—limit the use of accounts with local or domain admin privileges and turn on Microsoft Defender Firewall to prevent malware infection and stifle propagation.