XProtect and MRT Updates for macOS.

Discussion in 'all things Mac' started by 1PW, Feb 4, 2022.

  1. 1PW

    1PW Registered Member

    Joined:
    Apr 2, 2010
    Posts:
    1,938
    Location:
    North of the 38th parallel.
    Apple has released an update to XProtect Remediator (21-February-2024)
    1. XProtect (XProtectPlistConfigData) remains at version 2186 as of 19-February-2024.
    2. XProtect Remediator (XPR) (XProtectPayloads) has been updated to version 126 as of 21-February-2024.
    3. The Malware Removal Tool (MRT) (MRTConfigData) remains at version 1.93 since 26-September-2023.
    Although periodically checked by macOS, manually running the following undocumented macOS Software Update Tool command could hasten any of the above applicable pending software update(s):

    % softwareupdate -ia --include-config-data

    Versions Check:

    % defaults read /Library/Apple/System/Library/CoreServices/XProtect.bundle/Contents/Info.plist CFBundleShortVersionString; defaults read /Library/Apple/System/Library/CoreServices/XProtect.app/Contents/Info.plist CFBundleShortVersionString; defaults read /Library/Apple/System/Library/CoreServices/MRT.app/Contents/Info.plist CFBundleShortVersionString
     
  2. 1PW

    1PW Registered Member

    Joined:
    Apr 2, 2010
    Posts:
    1,938
    Location:
    North of the 38th parallel.
    Apple has released an update to XProtect and Yara definitions (27-February-2024)
    1. XProtect (XProtectPlistConfigData) has been updated to 2187 as of 27-February-2024.
    2. XProtect Remediator (XPR) (XProtectPayloads) remains at version 126 since 21-February-2024.
    3. The Malware Removal Tool (MRT) (MRTConfigData) remains at version 1.93 since 26-September-2023.
    Although periodically checked by macOS, manually running the following undocumented macOS Software Update Tool command could hasten any of the above applicable pending software update(s):

    % softwareupdate -ia --include-config-data

    Versions Check:

    % defaults read /Library/Apple/System/Library/CoreServices/XProtect.bundle/Contents/Info.plist CFBundleShortVersionString; defaults read /Library/Apple/System/Library/CoreServices/XProtect.app/Contents/Info.plist CFBundleShortVersionString; defaults read /Library/Apple/System/Library/CoreServices/MRT.app/Contents/Info.plist CFBundleShortVersionString
     
  3. 1PW

    1PW Registered Member

    Joined:
    Apr 2, 2010
    Posts:
    1,938
    Location:
    North of the 38th parallel.
    Apple has just released updates to XProtect, XProtect Remediator and Yara definitions (05-March-2024)
    1. XProtect (XProtectPlistConfigData) has been updated to version 2188 as of 05-March-2024.
    2. XProtect Remediator (XPR) (XProtectPayloads) has been updated to version 128 as of 05-March-2024.
    3. The Malware Removal Tool (MRT) (MRTConfigData) remains at version 1.93 since 26-September-2023.
    Although periodically checked by macOS, manually running the following undocumented macOS Software Update Tool command could hasten any of the above applicable pending software update(s):

    % softwareupdate -ia --include-config-data

    Versions Check:

    % defaults read /Library/Apple/System/Library/CoreServices/XProtect.bundle/Contents/Info.plist CFBundleShortVersionString; defaults read /Library/Apple/System/Library/CoreServices/XProtect.app/Contents/Info.plist CFBundleShortVersionString; defaults read /Library/Apple/System/Library/CoreServices/MRT.app/Contents/Info.plist CFBundleShortVersionString
     
  4. 1PW

    1PW Registered Member

    Joined:
    Apr 2, 2010
    Posts:
    1,938
    Location:
    North of the 38th parallel.
    Apple has just released updates to XProtect, and Yara definitions (12-March-2024)
    1. XProtect (XProtectPlistConfigData) has been updated to version 2189 as of 12-March-2024.
    2. XProtect Remediator (XPR) (XProtectPayloads) remains at version 128 as of 05-March-2024.
    3. The Malware Removal Tool (MRT) (MRTConfigData) remains at version 1.93 since 26-September-2023.
    Although periodically checked by macOS, manually running the following undocumented macOS Software Update Tool command could hasten any of the above applicable pending software update(s):

    % softwareupdate -ia --include-config-data

    Versions Check:

    % defaults read /Library/Apple/System/Library/CoreServices/XProtect.bundle/Contents/Info.plist CFBundleShortVersionString; defaults read /Library/Apple/System/Library/CoreServices/XProtect.app/Contents/Info.plist CFBundleShortVersionString; defaults read /Library/Apple/System/Library/CoreServices/MRT.app/Contents/Info.plist CFBundleShortVersionString
     
  5. 1PW

    1PW Registered Member

    Joined:
    Apr 2, 2010
    Posts:
    1,938
    Location:
    North of the 38th parallel.
    Apple has just released updates to XProtect, XProtect Remediator, and YARA rulesets have been amended (19-March-2024)
    1. XProtect (XProtectPlistConfigData) has been updated to version 2190 as of 19-March-2024.
    2. XProtect Remediator (XPR) (XProtectPayloads) has been updated to version 129 as of 19-March-2024.
    3. The Malware Removal Tool (MRT) (MRTConfigData) remains at version 1.93 since 26-September-2023.
    Although periodically checked by macOS, manually running the following undocumented macOS Software Update Tool command could hasten any of the above applicable pending software update(s):

    % softwareupdate -ia --include-config-data

    Versions Check:

    % defaults read /Library/Apple/System/Library/CoreServices/XProtect.bundle/Contents/Info.plist CFBundleShortVersionString; defaults read /Library/Apple/System/Library/CoreServices/XProtect.app/Contents/Info.plist CFBundleShortVersionString; defaults read /Library/Apple/System/Library/CoreServices/MRT.app/Contents/Info.plist CFBundleShortVersionString
     
    Last edited: Mar 19, 2024
  6. 1PW

    1PW Registered Member

    Joined:
    Apr 2, 2010
    Posts:
    1,938
    Location:
    North of the 38th parallel.
    Apple has just released updates to XProtect, and YARA rulesets have been amended (26-March-2024)
    1. XProtect (XProtectPlistConfigData) has been updated to version 2191 as of 26-March-2024.
    2. XProtect Remediator (XPR) (XProtectPayloads) remains at version 129 as of 19-March-2024.
    3. The Malware Removal Tool (MRT) (MRTConfigData) remains at version 1.93 since 26-September-2023.
    Although periodically checked by macOS, manually running the following undocumented macOS Software Update Tool command could hasten any of the above applicable pending software update(s):

    % softwareupdate -ia --include-config-data

    Versions Check:

    % defaults read /Library/Apple/System/Library/CoreServices/XProtect.bundle/Contents/Info.plist CFBundleShortVersionString; defaults read /Library/Apple/System/Library/CoreServices/XProtect.app/Contents/Info.plist CFBundleShortVersionString; defaults read /Library/Apple/System/Library/CoreServices/MRT.app/Contents/Info.plist CFBundleShortVersionString
     
  7. 1PW

    1PW Registered Member

    Joined:
    Apr 2, 2010
    Posts:
    1,938
    Location:
    North of the 38th parallel.
    Apple has just released updates to XProtect Remediator, and a Bastion rule has been added. (02-April-2024)
    1. XProtect (XProtectPlistConfigData) remains at version 2191 as of 26-March-2024.
    2. XProtect Remediator (XPR) (XProtectPayloads) has been updated to version 130 as of 02-April-2024.
    3. The Malware Removal Tool (MRT) (MRTConfigData) remains at version 1.93 since 26-September-2023.
    Although periodically checked by macOS, manually running the following undocumented macOS Software Update Tool command could hasten any of the above applicable pending software update(s):

    % softwareupdate -ia --include-config-data

    Versions Check:

    % defaults read /Library/Apple/System/Library/CoreServices/XProtect.bundle/Contents/Info.plist CFBundleShortVersionString; defaults read /Library/Apple/System/Library/CoreServices/XProtect.app/Contents/Info.plist CFBundleShortVersionString; defaults read /Library/Apple/System/Library/CoreServices/MRT.app/Contents/Info.plist CFBundleShortVersionString
     
  8. 1PW

    1PW Registered Member

    Joined:
    Apr 2, 2010
    Posts:
    1,938
    Location:
    North of the 38th parallel.
    Apple has just released updates to XProtect, XProtect Remediator, YARA definitions, and Bastion rules. (23-April-2024)
    1. XProtect (XProtectPlistConfigData) has been updated to version 2192 as of 23-April-2024.
    2. XProtect Remediator (XPR) (XProtectPayloads) has been updated to version 131 as of 23-April-2024.
    3. The Malware Removal Tool (MRT) (MRTConfigData) remains at version 1.93 since 26-September-2023.
    Although periodically checked by macOS, manually running the following undocumented macOS Software Update Tool command could hasten any of the above applicable pending software update(s):

    % softwareupdate -ia --include-config-data

    Versions Check:

    % defaults read /Library/Apple/System/Library/CoreServices/XProtect.bundle/Contents/Info.plist CFBundleShortVersionString; defaults read /Library/Apple/System/Library/CoreServices/XProtect.app/Contents/Info.plist CFBundleShortVersionString; defaults read /Library/Apple/System/Library/CoreServices/MRT.app/Contents/Info.plist CFBundleShortVersionString
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.