It's important not to forget that we are just a month beyond what was the worst week for security in the Macintosh platform's history. It is estimated that at one point over 600,000 Macs were infected. This represented 1% of the Mac user base, however it was reported that most of the infected computers were in the USA and Canada. The 1% figure matches the damage done by the disastrous Conficker virus for Windows that hit a few years ago.

Courtesy of Allison Sheridan, host of the Nosilla Cast - Mac Podcast, and guest Bart Busschots (Mac Security Expert), an overview of the FlashBack Trojan was provided on their April 08 podcast. It started off last fall exploiting Flash on your Mac. If you'll remember, you don't use Flash directly, but it plays video and other media on websites that you visit. At times, the various clickable buttons on a website are also designed using Flash. Many would argue that that represents poor site design. If you regularly use Flash, make sure your Flash player is up to date, so that the old vulnerabilities get patched.

If you are not sure what version of Flash you have you can check in your System Preferences -- by going to the Apple menu >> System Preferences. If you see it there -- please make sure that updates are set to Automatic. If you have purposely removed Flash from your Mac -- please note that you can always visit Flash websites by using the Google Chrome browser, an alternative to Firefox and Safari. Chrome has Flash built in and they keep it updated for you (very safe).

So if you still don't see Flash in your System Preferences and don't remember uninstalling it, then you probably have it installed but an old version (very unsafe). So either uninstall it using the link above (ie. you have no use for it) or do yourself a favor and install version 11. Update: Mac users running Lion 10.7 may want to go ahead and download the Flash 11.3 beta. This release will put you on par with the Windows version which includes automatic background updating.

While it is called the Flashback Trojan -- Flash really isn't the issue anymore. Between last fall and recently, it mutated into giving you fake notifications for Mac Software Updates. Official Mac software updates are very important and when they are available, Apple notifies you weekly. You can also manually check for updates by clicking Apple menu >> Software Update.

The way to spot the fake Software Update is if you never selected any updates to be installed yet you are being asked for your Mac system password with a box that says Software Update. FAKE. However, a real Software Update will show real programs that are checked off for you to update. Do any and all of those. However, this is yesterday's news, because the vulnerability which resulted in those fake updates has been patched. Patched just like a flat tire!

Last months's variation of the Flashback Trojan was unique in that it did not require ANY user interaction. And -- Apple had not updated its software in time to protect you. A lot of the infections occurred through ads encountered on websites, which likely were bad ads on legitimate websites. They came in through Java -- an application that you don't run directly but helps other applications on your Mac.

From my experience, most of you likely HAVE Java on your Macs. I use Java every day and not in specialized programs made for computer pros (Libre Office and Moneydance). Since early April, Apple has updated Java for Mac 3 times and if you have 10.6 or 10.7 version of the Mac OS you should have gotten these updates. If you are unsure: Apple menu >> Software update. Starting with Java 7, Oracle is making their platform for the Mac a stand alone download that can be obtained from and updated by them (just as it is for Windows). It is available now - as Java 7 update 4, but does will not include the Web Start components until update 6.

You should really Anti-Virus software on your Mac. This isn't an option anymore. I predicted there would be a day when this would come. I will give you two options -- free but more self-maintenance required or paid subscription which is managed for you.

Free options (you must routinely check for updates and do scans on your own) include Sophos AntiVirus Mac Home Edition and ClamXav.

As for paid options (updates for you, scans files as they come into your computer, scheduled scans, telephone support), I think one program captures the idea of a Mac-centric AV program very well --- Intego Virus Barrier X6. The service will run you $50 a year ($80 for 2 years) -- and covers 2 Macs. However, it should be noted that industry standards Norton, ESET, F-Secure, and Kaspersky also publish Mac specific products.

In closing -- Mac users can't say that they haven't been warned. Personally, I have been downplaying the security advantages of buying a Mac for a few years, and would honestly not bring this up when discussing a new computer purchase with a client. Ultimately, I think the selling points of a Mac over a Windows computer are A) Easy of use, B) Enjoyment, C) User experience / warranty support. A Windows computer of EQUAL quality to a Mac nearly the same price as a Mac or in some cases more. However, many people can get by with a decent, but not great Windows machine especially when home warranty support is tossed in (a benefit not offered through Apple care).

For the few of you still using OS 10.4 or 10.5 -- the time has really come to buy a new computer (or upgrade to 10.6 and 10.7 if you are on an Intel Mac). There are no more security updates for Mac OS 10.4 and 10.5. You are naked an unprotected. You can always keep your existing Mac running, but not use it on the Internet. You also have the option of installing Linux mint on some PPC Macs. The least expensive Mac desktop with monitor will run you roughly $1000 (ie. Mac Mini with basic DVI monitor) . A "decent" Windows consumer desktop will run you $650 to $750. I am not against anyone buying a Windows computer, if they cannot afford a Mac. Being up to date on software transcends having an attractive paperweight on your desk.

This article is part of an effort to solicit content from the Broadband Reports community. If you'd like to participate, please contact us.