Mac “malware” is not on any significant up-tick. So much FUD, so little time.

Warning: The first link is to ZDnet, who have a history of reporting of questionable quality when it comes to being honest or accurate about anything relating to Apple. ZDnet does have a record of regularly nay-saying Apple (the company or its products) through the last two decades.

[Proceed with caution] http://www.zdnet.com/blog/bott/an-applecare-support-rep-talks-mac-malware-is-getting-worse/3342

For another, more healthy perspective, I suggest you start with http://www.wired.com/gadgetlab/2011/05/mac-malware/

For a more humorous take-down of Mr’s Bott’s nonsense, have a read of:
http://www.macworld.com/article/159995/2011/05/trolls_straw_men.html
Scroll down to/search for “Mac attacks”.

And http://daringfireball.net
Search for “Ars Technica Investigates the State of Malware on the Mac”
Note:

” I asked several Apple engineers whether any antivirus software was mandated or even recommended for Mac OS X, internally. All said no. …”

First off, contrary to what anyone tells you, Mac OS X is not invulnerable, but that does not mean it is somehow merely waiting for as many exploits to occur, as already exist (and continue to emerge) for Windows. There’s no logic in such thinking. There is nothing about Macs using Intel processors that makes them somehow more vulnerable. The only exception here is if you happen to use virtualization (Parallels, VMware, VirtualBox) to run Windows on your Mac, in which case that installation of Windows is as vulnerable as any other Windows installation.

But if marketshare is truly somehow the only defense for Mac OS X, then we would be seeing a real threat already, more than paltry number of  social-engineering-based malware that does exist for Mac OS X. But here’s the rub: Regardless of what OS you use, if you go to some site and foolishly download something you know you shouldn’t (or even if you’re simply not sure !), download it, and mindlessly double-click it and enter your password – well, all bets are off, and nothing will keep your computer (use) safe.

The first thing you should do is always stop and think when anything asks for your administrator credentials. Another worthwile thing that you can do is to open Safari’s preferences (from the Safari menu), and un-click the option for “Open ‘Safe’ files after downloading” – always a good practice.