Macs and Ransomware

While ransomware that specifically targets Macs is incredibly rare,
it does exist, and there have been several examples in recent years

Macs and Ransomware

While ransomware on Windows has been a growing concern for many years now, ransomware on Macs is a recent phenomenon.

Before we delve into the specifics on Mac ransomware, let’s briefly go over how it works. Ransomware is a type of malware that encrypts your files without your permission, and then demands a ransom – often in the form of cryptocurrency like Bitcoin – in exchange for the decryption key. Over recent months and years, there have been several notable ransomware attacks, including WannaCry, Petya and DoppelPaymer, to name a few. The WannaCry ransomware affected organisations including NHS England in 2017, where an out-of-date version of Windows XP left many vulnerable to malware. Another major ransomware attack, Petya, also hit in 2017, just months after WannaCry; this ransomware attack also spread due to a vulnerability in Windows operating systems. But both of these devastating ransomware attacks only affected machines running Windows operating systems.

While Macs are less vulnerable to ransomware attacks – in fact, the first Mac ransomware only appeared in 2016 – that doesn’t mean they are immune altogether. Although incredibly rare, Mac ransomware is out there, so it’s important to stay vigilant. In 2016, the KeRanger ransomware appeared. Infecting Macs through a compromised update of the Transmission BitTorrent client, KeRanger was the first real example of Mac ransomware. Because KeRanger is signed with an authorised security certificate, it isn’t blocked by macOS’s built-in security system, Gatekeeper. The ransomware decrypts files, leaving a .txt file with the ransom demand in BitCoin. Thanks to the fast action of Apple, it was halted before it came a serious threat – but it showed that Macs were as susceptible to ransomware as PCs. In 2017, the Filezip ransomware appeared. Masquerading as “cracks” – tools to illegally patch software such as Microsoft Office – the ransomware encrypts the unsuspecting victim’s files. What makes this ransomware particularly troublesome is the fact that the key used to encrypt the victim’s data is never uploaded to a server, so even if the ransom is paid, no decryption key will be provided; the only way to get the data back is to restore it from a backup.

In recent weeks, the ThiefQuest ransomware has also come to light. As well as being a ransomware, ThiefQuest has a whole host of other spyware capabilities, allowing hackers to access details like passwords and credit card details as the infected user types them in. Like Filezip, the ThiefQuest ransomware disguises itself as software on torrent websites. It’s believed that the ransomware capabilities are secondary, and may not even particularly effective. Nonetheless, this new Mac malware highlights the dangers of ransomware. Researchers have noted that ThiefQuest won’t run if it detects antivirus software in the background.

To protect your Mac from the threat posed by ransomware, make sure you only download installers from trusted sites, and be especially wary of cracks that claim to provide expensive software for free. You should also be careful when opening email attachments, as this is another common way for hackers to compromise your system. Finally, always make sure you have an up-to-date antivirus tool installed on your Mac.

Mac Ransomware

Categories

Cloud Storage (1)

Computer Forensics (2)

Data Recovery (85)

Data Recovery Specialists News (1)

Data Security (3)

Hard Drive Data Recovery (2)

Mobile Phone Recovery (1)

RAID Data Recovery (21)

SSD Data Recovery (4)

Technology (73)

Free Diagnosis

"Our free hard drive data recovery evaluation service will tell you whether your data can be recovered, exactly how much it will cost and how long the data recovery will take. Simply phone or email us for a job number and send your data recovery to us. Your hard drive or media will be photographed, catalogued and bar-coded and the data recovery evaluation will start within an hour of receipt."

Listing Of Recoverable Files

"Once in the laboratory, your media will undergo a comprehensive data recovery evaluation to determine the extent of the data loss. We aim to complete this process within 24 hours depending on the complexity of work involved. The engineers will provide a no obligation recovery prognosis, with a guaranteed list of recoverable files and an estimated timescale. You can then decide whether to proceed with the recovery. Should you choose not to proceed, we will return your media by secure data courier."

Completing the Process

"Should you choose to proceed, the data recovery process will be completed and the data will be safely stored on our servers. We will then copy out the data to your preferred choice of output media - either 64Gb memory stick or HDD (for purchase or loan). Your data will be dispatched on our secure, next day courier service. Once you have received your data any copies of your data will be permanently and securely erased from our servers after 7 days."

Established and Trusted

"40 years experience in the data recovery industry chairing ISO and BSI standards, we have developed a reputation for excellence at a price that is affordable. With extensive data recovery research and development capabilities, our success rates are second to none - without compromising on our prices! This is why over 36,000 companies and individuals come to us every year."

Safeguarding Your Data

"Your data is important to us, which is why all our data recovery procedures comply with the Association of Chief Police Officers Guidelines and Civil Procedure Rules for handling electronic evidence. Great care is taken when recovering and handling your data to ensure that its integrity is maintained and that there is a clear audit trail through the entire data recovery process."

Industry Leading Diagnostics

"Our data recovery laboratory completes over 120 successful recoveries every day from clients including the British Petroleum, NHS and EDF Energy. With ISO 27000 (Information Security) and ISO 9001 (Quality Management) accreditation - we are a data recovery company you can rely upon! Class 100 clean rooms, specialised platter removal jigs and software applications allow us to provide the most comprehensive service in the industry."

"Absolutely fantastic"

"Absolutely fantastic customer service from a very professional, efficient and friendly team. They are great at communicating findings and keeping you up to date with recovering any lost data. We had a corrupt video file recovered using the express service and the work was completed very quickly. I highly recommend using Data Recovery Specialist and rate the service and experience a 10/10"
Will Lloyd
Five Star Review

"Service I received was great"

"The data recovery service I received was great. They were very clear from the outset about what may and may not be possible and what the cost would be. From my device being collected by a courier, to a new device being sent back to me only a matter of days later, they were in touch every step of the step way to let me know what was happening. "
Lucy Owen
Five Star Review

"I found the service easy use"

"I found the service easy use. The recovery of my data was carried out extremely efficiently. It wasn’t cheap but the cost included a new Hard Drive. The issue for me was the recovery of my photographs, some of which were really irreplaceable. Everything I needed was carried out and the data was returned to me on the new hdd in a manner that followed my own distribution."
Martyn Webster
Four Star Review

"Delivered in the timescales promised"

"The service from start to finish was excellent. Before contacting DRS I had been advised I needed their type of specialist service. The technical service and customer service was always top class, everything was delivered in the timescales promised. It was expensive but it recovered the irreplaceable and that, in its way, is priceless."
Martin Goff
Five Star Review

"I would definitely recommend them"

"My external hard drive failed and the local company I tried couldn't retrieve anything from it. I found Data Recovery Specialists through an online search and they responded to my initial query very quickly. I sent my hard drive to them and they were able to recover all my data very quickly, keeping me informed of what was going on the whole time. Great service and I would definitely recommend them."
Lorraine Bunce
Four Star Review

"Would recommend to anyone"

"Excellent service, I felt completely at ease sending my hard drive to be fixed with Data Recovery Specialists. Would recommend to anyone needing help salvaging their hard drives."
Jemima le Sueur
Five Star Review

"Helped me retrieve the data"

"I had a damaged external hard disk that my local computer shops were unable to repair. Data Recovery Specialist help me retrieve the data quick. It's not a cheap service but it works and the data recovered was far more valuable than the repair cost. "
Music Law Contracts
Four Star Review

"Quick and professional service"

"I had dropped my external while it was spinning so did huge amounts of damage. I contacted several companies and opted for DRS. They were very quick with communication, explained everything for someone who’s not terrifically technically minded and put it all in writing as well. Collection of my device was simple, the turn around time was quicker than I expected and they kept me informed right through the process. Really pleasant and professional company. If I do break something, they would be my first port of call, but I’m hoping I won’t!"
Alex West
Five Star Review

"Fantastic job"

"The guys did a fantastic job in recovering my very important data. My interaction with Daniel Rees was very good, he was honest with what he could do to recover my very important Data. I also found their customer service department especially Roger a pleasure to deal with. My only real concern is that I found the company to be too expensive, however I scored them a 5 star as they recovered 100% of my very important Data."
Richard Daniel
Four Star Review

"Recovered my precious data"

"The guys at Data Recovery were excellent, especially Daniel Rees and Roger from customer service, who throughout my interaction with them kept me informed and were honest with regards to what they could do to recovery my precious data. They were very expensive but I've given them 5 stars as they manage to recovery all 100% of my data."
Ricky Daniel
Five Star Review

"The best in data recovery"

"After a bad experience with my local computer shop who had my dead hard drive for a week and said the data could not be recovered, I sent my hard drive to Data Recovery Specialists. Rapid, amazing service. Had a report of files available in 24h and 100% of data was recovered from hard drive. These guys are the pros! "
Michael Paterson
Five Star Review

"The data recovery service was first rate"

"The data recovery service was first rate from start to finish. My hard drive was collected quickly by a pre arranged courier service and returned quickly in the same manner.I was kept informed by telephone at all parts of the recovery and all my data was returned.I can fully recommend this company to anyone."
Cecilia Gregson
Five Star Review

Stay Connected

0800 223 0162
sales@datarecoveryspecialists.co.uk

Data Recovery Services Limited | Registered Number 04417876 | VAT Number 803 1178 66

Website by IT Pie – web design Cardiff

Contact Us!

To speak with one of our Sales Team call us on:
0800 223 0162
Alternatively enter your details below followed by your enquiry and one of our team will get back to you.

Quick Enquiry

Macs and Ransomware