- AARP - http://blog.aarp.org -

Beware: ‘Ransomware’ Is Now Attacking Macs

Posted By Sid Kirchheimer On August 8, 2013 @ 9:00 am In Scam Alert | Comments Disabled

ransomware [1]Cybercrooks have upped their game in the common ransomware” scam [2], in which your screen displays a bogus FBI message accusing you of watching child pornography or another illegal online activity – and then freezes your computer until a “fine” is paid.

Since last year, this scam has primarily targeted PC users.

But now, the real FBI [3] warns that the latest targets include Macs running the OSX operating system. [4]  And there are additional campaigns against PCs in which other federal agencies are being impersonated, including the Internet Crime Complaint Center (IC3) and the Department of Homeland Security (DHS).

With the Mac ransomware, the pop-ups appear legitimate, showing fbi.gov within the address field in your browser and using well-crafted language, as opposed to the mistake-riddled “scammer grammar” often used in Internet scams.

In all forms of the scam, supposed fines ranging up to $300 are demanded via a prepaid debit or MoneyPak [5] card. Once that’s done, you’re told you will receive a password code that will allow you to unfreeze your computer.

Don’t pay! Many people who did got nothing in return – other than demands for more payments. Instead, file a complaint with the IC3 [6] and deal with the problem yourself.

With Macs, fixing it is relatively easy. The ransomware that targets these machines is not real malware, says the FBI. Rather, it just causes your operating system to open numerous browser windows (iframes) to incapacitate your computer.

You can close the iframes by clicking the “Reset Safari” option on the Safari menu, after checking all check boxes. Or hold down the shift key while relaunching Safari, which will prevent windows and tabs from the previous session from reopening.

With PCs [7], getting rid of the ransomware can be a bigger job. It’s a virus known as Reveton, a variant of a type of malware used to hijack online banking accounts.

Sometimes it’s possible to unfreeze your machine yourself by turning it off and restarting it in “safe mode” and then following Windows instructions to do a “System Restore.” [8]

But officials warn that this doesn’t neutralize the threat, because Reveton may continue to capture personal information [9] such as your user names, passwords [10] and credit card numbers, and send them to the scammers. That’s why PC users are urged to have a computer professional remove the malware.

Photo: fbi.gov [11]

 

Also of Interest

 

See the AARP home page [15] for deals, savings tips, trivia and more

 


Article printed from AARP: http://blog.aarp.org

URL to article: http://blog.aarp.org/2013/08/08/beware-ransomware-is-now-attacking-macs/

URLs in this post:

[1] Image: http://blog.aarp.org/wp-content/uploads/2013/08/ransomware.jpg

[2] “ransomware” scam: http://www.aarp.org/money/scams-fraud/info-08-2012/online-virus-scam-freezes-computers.html?intcmp=AE-BLIL-DOTORG

[3] FBI: http://www.aarp.org/videos.id=780858814001/

[4] Macs running the OSX operating system.: http://www.aarp.org/money/scams-fraud/info-07-2011/mac-computer-attack-scam-alert.html?intcmp=AE-BLIL-DOTORG

[5] MoneyPak: http://www.aarp.org/money/scams-fraud/info-04-2012/avoid-moneypak-scams.html?intcmp=AE-BLIL-DOTORG

[6] file a complaint with the IC3: http://www.ic3.gov/default.aspx

[7] PCs: http://blog.aarp.org/2013/07/18/tech-support-scams-prey-on-consumers-telemarketing-fraud/?intcmp=AE-BLIL-BL

[8] “System Restore.” : http://windows.microsoft.com/en-us/windows7/what-is-system-restore

[9] personal information: http://www.aarp.org/money/scams-fraud/info-04-2010/ask_sid_how_do_i_permanently_remove_personal_files_from_my_computer_.html

[10] passwords: http://www.aarp.org/money/scams-fraud/info-04-2012/bad-passwords-scam-alert.html?intcmp=AE-BLIL-DOTORG

[11] fbi.gov: http://www.fbi.gov/news/stories/2012/august/new-internet-scam

[12] Cybercrime Costs 508,000 U.S. Jobs: http://blog.aarp.org/2013/07/25/cybercrime-costs-508000-u-s-jobs/?intcmp=AE-ENDART1-BL-REL

[13] FDA Warns of Massive Recall of Diabetes Test Strips: http://blog.aarp.org/2013/08/01/fda-warns-of-massive-recall-of-diabetes-test-strips/?intcmp=AE-ENDART2-BL-BOS

[14] Join AARP: https://appsec.aarp.org/MSS/join/application?intcmp=AE-ENDART3-BL-MEM

[15] AARP home page: http://www.aarp.org/?intcmp=AE-ENDART3-BL-HP

Copyright © 2013 AARP. All rights reserved.