Safari Ransomware Incident

Discussion in 'macOS Sierra (10.12)' started by flyer22, Feb 24, 2018.

  1. flyer22 macrumors newbie

    flyer22

    Joined:
    Sep 30, 2015
    Location:
    England
    #1
    Hi All

    I was trying to check my internet bank account the other night and misspelt my bank's name in google and accidentally clicked what I thought was a genuine link to the bank website. When the website came up it immediately froze and demanded I call a number to get my computer unlocked.

    I didn't put any bank details into website - I couldn't as keyboard wouldn't work. I pressed escape and tried to click out of the window down but it wouldn't work. Held the power button down and restarted the MacBook. MacBook started up fine and the stuck safari ransom window was gone.

    I think the MacBook is fine seems normal but today Mail did unexpectedly quit and now I'm wondering if the ransom window actually left something on my Mac.

    1) Should I get a an anti-virus and run it? If so which one
    2) Additional steps I should take?

    I have reported this to the bank who said no unusual activity on the account and are sending new login details as a precaution.

    Would welcome any further advice.

    15" MacBook Pro Retina 2015 Sierra 10.12.6

    Many thanks

    Flyer
     
  2. Weaselboy Moderator

    Weaselboy

    Staff Member

    Joined:
    Jan 23, 2005
    Location:
    California
    #2
    It might have left something behind in the way of browser cookies or browser caches, so I would clear out both of those. But as long as you did not enter your admin password giving it permission to install anything, you are otherwise fine.
     
  3. flyer22 thread starter macrumors newbie

    flyer22

    Joined:
    Sep 30, 2015
    Location:
    England
    #3

    Thanks for that Weaselboy I'll do it now.

    Very grateful for the help

    Best Flyer
     
  4. dianeoforegon macrumors 6502a

    dianeoforegon

    Joined:
    Apr 26, 2011
    Location:
    Oregon
    #4
    Check out DetectX Swift. Has some nice fetures like alerting you when anything is added to Launch Agents.

    https://sqwarq.com/detectx
     
  5. flyer22 thread starter macrumors newbie

    flyer22

    Joined:
    Sep 30, 2015
    Location:
    England
  6. Fishrrman macrumors P6

    Fishrrman

    Joined:
    Feb 20, 2009
    #6
    Download and run MalwareBytes.
    It's a free download.
    The software "urges you" to upgrade to the paid version, but YOU DON'T HAVE TO DO THAT.
    After 30 days, it will automatically "convert itself" to the free version.
     

Share This Page

5 February 24, 2018