+- MacResource (https://forums.macresource.com)
+-- Forum: My Category (https://forums.macresource.com/forumdisplay.php?fid=1)
+--- Forum: Tips and Deals (https://forums.macresource.com/forumdisplay.php?fid=3)
+--- Thread: Company infected with Ryuk ransomware (/showthread.php?tid=233152)
Pages:
1
2
Re: Company infected with Ryuk ransomware - jdc - 10-10-2019
Speedy wrote:
“We’ve been saying it for some time: Mac malware is rare compared to the stuff that targets Windows. But Apple computers are far from immune.
That's from 2017. But could have been written in any year -- 2016-1999 -- and 30 years later "rare" seems to be teetering on 0.
Re: Company infected with Ryuk ransomware - Sarcany - 10-10-2019
jdc wrote:
[quote=Speedy]
“We’ve been saying it for some time: Mac malware is rare compared to the stuff that targets Windows. But Apple computers are far from immune.
That's from 2017. But could have been written in any year -- 2016-1999 -- and 30 years later "rare" seems to be teetering on 0.
I've cleaned Mac malware off of over a dozen computers this week. Some of it included pretty devious proxy settings and configuration profiles that could give bad guys nearly complete control over a Mac.
It seems to me that there's more Mac malware than ever and it's a very serious problem.
Re: Company infected with Ryuk ransomware - jdc - 10-10-2019
Sarcany wrote:
It seems to me that there's more Mac malware than ever and it's a very serious problem.
can you share specifics? So we all know what to look for?
And how do you think they got these -- PEBCAK?
And whats your method for "cleaning"
Re: Company infected with Ryuk ransomware - JoeH - 10-10-2019
jdc wrote:
And how do you think they got these -- PEBCAK?
That is how most malware is "got", PC or Mac - or other computing platforms.
Re: Company infected with Ryuk ransomware - Sarcany - 10-10-2019
jdc wrote:
[quote=Sarcany]
It seems to me that there's more Mac malware than ever and it's a very serious problem.
can you share specifics? So we all know what to look for?
How can you tell that you have malicious software running on your Mac?
Problems loading secure web sites and connecting to Exchange servers. SOCKS proxy appearing in your advanced network settings and reappearing on every reboot after you remove the setting.
Profiles pref pane appears in your System Preferences. Might be normal if your computer is owned by a large company, but even then you should check to see how the profile is identified and whether it clearly indicates that it came from your IT dep't.
Your home page and/or search engine is not what you expect.
You get pop up windows and ads for other websites when you hit a shopping website.
Safari reports that it can't load an insecure website for almost any URL you enter.
Your bank website won't let you log in.
You're running Google Chrome.