alvarnell

Probably should have been posted to the Malwarebytes for Mac Support Forum, but the same people monitor both, so should be OK here. There was a problem with the initial versions of Ventura and Real Time Protection, but that has supposedly been solved now and doesn't sound like that's your problem in any case. You posted after business hours, so expect someone from the staff to get back to you early tomorrow US Mountain or Pacific time.

Automatic checks for updated protection definitions occur twice an hour, so about the only reason to check manually would be if you suspect a False Positive detection has taken place. So adding it to the app doesn't seem to me to be a pressing need. I don't recall ever having used it since v1.0 was released.

I suspect you will find your answer at https://haveibeenpwned.com/. Some site you trusted with your email address was hacked to harvest probably thousands and sold the address list on the dark web to professional spammers. Or maybe you left your email address on a phishing site. Although the "From: " address may be showing you a legit business, that's quite easily faked and doesn't tell you where it actually originated from. Services such as SpamCop can read the headers and determine the actual source if you are interested, and will optionally inform the senders ISP so they can hopefully take the sender down. Malwarebytes products are designed to prevent malware infections and might be able to prevent you from visiting a known phishing site that wants to steal your credentials, but you'll need to purchase a different product that specializes in email filtering such as SpamSieve to do what you are looking for.

Note that risk to home users is low, indicating that the threat that Apple seems aware of must have been targeted against large Governments and/or Companies.

Your macOS is two versions and 3-½ months out-of-date, which make troubleshooting any issues you have much more difficult for all help desks. From everything you've outlined so far, it sounds much more like you are experiencing Internet connectivity problems for some reason. It's almost certainly doesn't involve Malwarebytes which wouldn't cause any of the issues you have described. Although I have Discord installed on my Big Sur Mac, I've never found a need to use it and Malwarebytes never quarantined any part of it. The Malwarebytes staff won't be in until Monday morning, so you are probably stuck with a few of us Mac users for now.

First we probably need to know what version of macOS you are using here. To see what files have been Quarantined, check to see if the following location still exists after uninstalling Malwarebytes: /Library/Applications Support/Malwarebytes/MBAM/Quarantine/

I correctly guessed that the screenshots showing Mandarin were from Files and couldn't replicate your findings with any of the files "On my iPhone" but again, don't have any iCloud files. I'm up-to-date on iOS version. Did you open those .pdfs to verify they are not Chinese? I also installed Python 3 on my Mac to support a couple of apps that now require it. For @treed, RansomWhere? cannot seem to tell the difference between encrypting and decrypting a file. I often get warnings when an app is self-updating itself having downloaded the update and needing to decrypt/expand it during the update process. /private/tmp/ is commonly used during that process. But I don't have Adobe Acrobat installed, only Reader.

None of my anti-malware software identifies it as PUP/PUA/Malware and examining it's contents, it does appear to have all the right contents for finding all Adobe files. I can't examine the script as it was compiled as run only. I ran it myself with no obvious issues.

It was recommended by MacInTouch, which is normally a very reliable information source: https://www.macintouch.com/post/29108/accremover/

I went back an reviewed all the previous postings and can't find anything about your Pages problem, but did notice that you did apparently have an issue with at least one Adobe product in the past. @treed suggested then that you uninstall your Adobe software and reinstall it. There is an app that is supposed to help with that which you might find useful at https://www.macparc.ch/apps/accRemover/.

Yes, of course there have been macOS rootkits and I said that in my reply, but most are extinct (either patched to prevent or no longer in circulation) and those that are known to still exist would have been detected by Malwarebytes. The only other possibility is that there's a new zero-day out there that nobody knows about yet. Again, macOS rootkits are not only less common than the Windows variety, they are out-and-out "rare." Running your Mac in safe mode will always result in strange occupancies, especially graphics, some more than others due to hardware differences. As described, Safe mode disables not only 3rd party software and services, but only loads those Apple services absolutely necessary to allow it to boot-up. Ask any other Mac user to check their compared and they will confirm this is perfectly normal. Has been with every one of the dozen or so Macs I've owned or operated since the late 1980's. I'll have to refresh my memory on your Pages problem.... You didn't answer my question about Adobe Acrobat.

"They" did not do that. The macOS installer has been doing that for several years now and there is nothing at all suspicious about it. Looks to be Adobe Acrobat Updater running a Python script that decompresses downloaded files as part of an Acrobat update. I take it those screenshots are dialogs from RansomWhere? Rootkits are all but non-existent with macOS and I can find no reference to one named "Python's kids." You do have Adobe Acrobat installed, correct? If so, it will check for updates periodically and automatically download and install the updates. I don't put files on my iCloud, so don't have a clue about this. The only thing I can suggest is to check Settings->General->Language and Region preferences, but unless you are seeing Mandarin elsewhere, that isn't likely why you are seeing it.

Call Apple, although I don't really understand why you feel an explanation is required.

Got it, but it I'm absolutely sure it did start out in this forum and was moved by somebody to Windows.

There is only one flavor available for Mac users and it's mentioned in the title to this forum "Malwarebytes for Mac". The free version simply disables the features available with a premium subscription.

Not sure how this got moved to the Windows forum, but I believe the OP is a Mac user.

I too see the notification, but since I know what it means, I simply dismiss it and go on about my business. And since I have another anti-malware utility that provides real-time protection, I'm unable to use that the premium Malwarebytes feature. But in my opinion your classification of this as "scare tactics" is overstated. It is far more important to catch malware before it has a chance to infect your computer, so in my mind such a warning is justified. Free Malwarebytes will certainly clean things up should you be attacked, but you risk incurring significant damage between the time you became infected by a malicious attack and when you get around to running a manual scan to check.

If Malwarebytes is like most software companies I'm familiar with, they are always looking for foreign language linguists to help them with localization. If you feel qualified and want to volunteer, I'm sure they would welcome it and might compensate for your time.

Malwarebytes company policy precludes any speculation in advance about when a new version will be released and any new features they are working on. No serious issues with 16.2 iOS/iPadOS worth discussing.

Deleted for now

How to Check if an iPhone Has a Virus

iPhone Passcode is Required to Enable Face ID

So you were asking about turning off Wi-Fi on you iPhone, not your home network. Your reference to "firewall" was what threw me. Your real concern is about accidentally connecting to a malicious access point that could monitor your Wi-Fi activity. That has nothing to do with any firewall. Just make certain that in Settings->Wi-Fi->Ask to Join Networks is set to "Ask". And if you see any networks that you have previously connected to that look suspicious, click on the circled blue "I" on the right and click "Forget This Network". Other than that, what @treed just told you is 100% correct.

There is no firewall involved with an iOS Wi-Fi connection to an Access Point, so nothing to disable. Are you asking if an iOS device can tell if a Wi-Fi router firewall is disabled? If so, under what circumstance would you want to disable a router firewall and why would an iOS device need to know?

Yes, and a cell equipped iOS device will switch to using cellular for internet connectivity if settings allow. I've never heard that, but suppose the thinking is that an outsider will have no chance of hacking into it. Seems to me there's little danger of that happening at all and no more than when you are home. In the context you are asking, it's likely your iOS device will be with you when you leave.