Betterbird mail blocked by DeepGuard

Hi,

It looks like the Betterbird app was updated around December 6. New software can sometimes take a while before our system recognises them as known clean.

I took a look at the Betterbird Mail app and noticed that it is not signed with the standard Apple-issued Developer ID certificate. That unfortunately makes it impossible to add it to our list of trusted software developers.

We don't have any indication that there is any threat related to Betterbird. If you trust the developer, you can allow it in DeepGuard. By default, because this app is not Developer ID-signed, DeepGuard will only trust the version currently on disk. If you want to trust all future versions, you can edit the Betterbird rule in the DeepGuard Configuration and edit the "Contraint" so that it's empty. DeepGuard will then allow file accesses for that process based on the name.

I would also urge the developers to adopt Apple's Developer ID programme to sign and notarise their app, if at all possible. In addition to allowing third-party vendors like us to validate the origin and authenticity of the software, it ensures that they adhere to better security practices in general, through the enforcement of the macOS hardened runtime.