At least this is the advice from ConsumerReports. Of their seven online blunders, number five is sure to hit home to the hearts of Mac enthusiasts. The title of number five? “Thinking your Mac shields you from all risks.” And it doesn’t get any friendlier from there.

According to ConsumerReports, “Apple’s Safari, has no phishing protection. We think it should.” (We all do.) “What you can do: Until Apple beefs up Safari, use a browser with phishing protection, such as the latest version of Firefox (shown at right) or Opera. Also try a free anti-phishing toolbar such as McAfee Site Advisor or FirePhish.”

It’s sound security advice. Mac owners seem to live in a fantasy world where for some reason (without a basis in reality) Macs are just magically safe from all bad things. They’re not. Protect yourself from phishing. The default browser (Safari) lacks phishing security, so use an anti-phishing tool. Or use a safer browser.

In fact, I would also say that ConsumerReports’ number one with a bullet on that list is also right to the heart for Mac owners. “Assuming your security software is protecting you.” It’s the biggest blunder that Mac enthusiasts make.

No computer is secure. And certainly not by default. Security doesn’t just happen. You have to make it happen. Change your settings from the default values. Use passwords. Install more secure software. Heck, use a hardware firewall. Do something. Do anything. Just don’t do nothing. A Mac is no more secure by default than any Windows PC or Linux box. (Or any other box for that matter.) And the world is a nasty place. Surf smart: surf safe.