Hacked through icloud

Discussion in 'MacBook Pro' started by lauraloo, Jul 2, 2017.

  1. lauraloo macrumors newbie

    Jul 2, 2017

    My Macbook pro has just been locked by randsom ware. I recieved an email from apple saying someone had tried to access the icloud, next I received an email saying my device had been locked by findmyphone.

    Now my macbook has the passcode screen and email asking for me to email helpmeapple which I wont be doing.

    I have tried to search but cant seem to find an answer.

    Is there a way to get out of this without paying?

    thanks in advance
    --- Post Merged, Jul 2, 2017 ---
  2. lobo1978, Jul 2, 2017
    Last edited: Jul 2, 2017

    lobo1978 macrumors 6502


    Sep 22, 2011
    Wipe HDD and restore from time machine? Call Apple to unlock it and take control over you iCloud account?

    It is not windows crap. You data is not encrypted.

    There is no ransomware on Mac. activate two-step security + don't use naive passwords.
  3. ZapNZs, Jul 2, 2017
    Last edited: Jul 2, 2017

    ZapNZs macrumors 68020


    Jan 23, 2017
    This is likely a fake ransomware attack. IIRC there are only two known versions of ransomware that affect macOS, neither of which are common, and KeRanger is the only one which poses a serious threat (I believe this is ONLY applicable if you use torrents - someone smarter than me could elaborate.)

    It is possible that someone was allowed to change your password. Did you allow anyone remote access to the computer for "technical support"? A common scam is a popup or email or phone call telling you that something is wrong with your system and to call "Apple Technical Support" or "iCloud Technical Support" and, when you give them access to your computer, they then enable some sort of a passcode lock (with the goal of forcing you to pay money to unlock it or lose data - this is done with both Windows and Mac computers, and if you give someone else access it more or less bypasses all of the security features of the OS and most third party security software.) Likely, they would have an Indian or African accent is this is where most of the scams originate from.

    • Do you know if you have FileVault enabled?
    • Which Mac do you have?
    • Are all of the files on this system backed up using TimeMachine, a third party backup App, or manually backed up yourself?
    • Did you use two factor authentication with your iCloud account?
    • Have you cancelled any credit cards attached to your Apple account?

    • Can you show us some images of what you are seeing on the screen? (Please do this BEFORE taking any further action)
  4. Phil A. Moderator

    Phil A.

    Staff Member

    Apr 2, 2006
    Shropshire, UK
    When you got the first email, did you follow a link and enter your password? It's highly likely that the email was fake and you handed your password over to scammers if you did. If that's what's happened, they've got control of your iCloud account now and have probably locked your computer using find my mac.
    If all the above is true, you need to call Apple and get control of your iCloud account back first, after which you can undo the lock on your mac

    If all the above isn't true then it could just be a simple scam - a photo of what's on your screen would help enormously!

Share This Page