How to scan an Apple Device for Viruses - HOAX SPAM alert

Pkafkas
Pkafkas used Ask the Experts™
on
One of my co-workers informed me that a family member received an error message on their Home MAC Laptop “Error #0x80072ee7"  A good description of the problem is on this web site:  https://www.2-spyware.com/remove-error-0x80072ee7-virus.html

My co-worker actually called the number and someone was able to remote into his home laptop.  Afterwards he called me and asked me for my thoughts.  I told him it was a scam and not to trust that person or call that number again.  My co-worker informed me that even though the fake spam tech was on his wife's laptop for 3 minutes that same guy did not connect to his work MAC laptop (that is at home).

I want to scan every device that this co-worker has before he connects to our corporate network.  I researched an anti-virus that can be used for MAC/Apple Laptops and found:  https://www.clamxav.com/  

Then I would suggest that the co-worker use that anti-virus program for every other Apple device at his home.   For Windows computers I like to use Hitman pro; but, there are a lot of other programs as well.

I wanted to ask the Experts, if I should do anything else besides scan the co-worker Apple devices (Home and Work Devices)?  I am also thinking about having a little safe computing presentation for top executives of the company.  Even if their time is extremely important.

So my questions is:

What should I do to make sure that the co-worker's devices are virus free before he connects with them to the corporate network?  SO far I was planning using that Anti-Virus software; but, are there any other thoughts?
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
ClamXAV can work, but it's limited and far behind the commercial offerings.  I would suggest the free Avast or BitDefender to better scan the Mac.  If you're willing to go to paid offerings, I would recommend ESET.
Most Valuable Expert 2013
Commented:
Are they running Windows on their Mac?

Trust your co-worker's faimily don't work in IT (!) this is a browser hoax, but at the same time appears on a fake Microsoft support page and is clearly badged "Microsoft Error code". The person dialling into their machine will have been very disappointed to find MacOS waiting for them which is probably why they were on there for such a short time.

If they are running Windows then check the virtual machine as you would any Windows PC, OSX is pretty much sandboxed against an attack like this though so if it happened in an OSX session you can dial down the risk quite a lot - especially if you're looking at a separate amchine sharing account details.

What's the corporate AV solution? Can they use that prior to connection if you are concerned?
AVAST for OSX is a good start - https://www.avast.com/free-mac-security

Forget about ClamXAV - it's simply not updated enough and hasn't the success rate of commercial and more active AV applications.

The real issue here is that in reality the Fake Support thing is browser-based Malware and not a Virus and the likelihood of either computing having a virus is small.  The SCAM is designed to get you to pay for unnecessary technical support to remove/clean non-existent malware from your computer.   They typically install a program (with the users consent) which scans and generates false positives and they scare the user into paying to FIX them.  Usually if the user is gullible enough they can repeat the process more than once for more $$. I've not seen much evidence of this scam being ransomware where they encrypt the computer data and you have to pay to unlock it .. that is MUCH more serious and the instances of that on OSX are rare and recent infections with WannyCry etc. were Windows-based.

You do not indicate if the co-workers laptop was OSX or Windows but if it is OSX then it is less likely that there is any ongoing infection if they scan for unrecognised programs with Avast or Bitdefender hopefully they'll get the "all clear".
PkafkasNetwork Engineer

Author

Commented:
It is OSX operating system.  Its probably not a bad idea to look into a MAC Level Anti-Virus program for the work laptops.  At least it will not hurt.
David AndersTechnician

Commented:
I am fond of Malwarebytes for Mac  and Etrecheck.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial