The macOS system must use an approved antivirus program.
An XCCDF Rule
Description
<VulnDiscussion>An approved antivirus product must be installed and configured to run. Malicious software can establish a base on individual desktops and servers. Employing an automated mechanism to detect this type of software will aid in elimination of the software from the operating system.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>
- ID
- SV-257224r922877_rule
- Severity
- High
- References
- Updated
Remediation - Manual Procedure
Configure the macOS system to automatically update XProtect by installing the "Restrictions Policy" configuration profile.
If XProtect is not being used, install an approved antivirus solution on the system.