tortman
Level 1 (0 points)

Q: can cryptolocker infect a mac computer

Hi Can The New Malware Cryptolcker Infect A Mac Computer

Running Windows Parallels & Microsoft Office For Mac 2011

Mac Pro, OS X Mountain Lion (10.8.5)

Posted on Dec 15, 2013 8:05 AM

by QuickTimeKirk,Solvedanswer
QuickTimeKirk QuickTimeKirk
Level 9 (53,306 points)
A:

http://en.wikipedia.org/wiki/CryptoLocker

Not on the Mac OS side.

Posted on Dec 15, 2013 9:20 AM

Close
tortman

Q: can cryptolocker infect a mac computer

  • All replies
  • Helpful answers

  • by QuickTimeKirk,Solvedanswer

    QuickTimeKirk QuickTimeKirk Dec 15, 2013 9:20 AM in response to tortman
    Level 9 (53,306 points)
    Dec 15, 2013 9:20 AM in response to tortman

    http://en.wikipedia.org/wiki/CryptoLocker

    Not on the Mac OS side.

  • by mccube Huskisson,

    mccube Huskisson mccube Huskisson Nov 30, 2014 6:02 PM in response to QuickTimeKirk
    Level 1 (0 points)
    Nov 30, 2014 6:02 PM in response to QuickTimeKirk

    Actually... Yes it can. Ive got an infected iMac and MacBook atm. Now for the fun part of getting rid of it...

  • by Kurt Lang,

    Kurt Lang Kurt Lang Dec 1, 2014 8:18 AM in response to mccube Huskisson
    Level 8 (38,049 points)
    Mac OS X
    Dec 1, 2014 8:18 AM in response to mccube Huskisson

    Whatever you have, it's not Cryptolocker. It and the Mac has been covered extensively. Cryptolocker is a Windows only threat. It has also been defeated. FireEye has a web page where even if your Windows computer has been infected, they can send you the decryption key to unlock it without paying the ransom fee.

     

    Source 1

     

    Source 2 - FireEye is one of the highest regarded anti malware and security sites. Note again that it only affects PCs running Windows.

     

    Source 3 - I added this one to show that not everyone understands what Cryptolocker does. There are many sites that tag the Mac and Cryptolocker together, but in no case does it do what it does on the PC side. In the case of the Mac, if you see anything that says you've been infected with Cryptolocker, it's nothing more than a JavaScript loop on a web page that keeps you from backing out of that page and says you're infected. That is a VERY long way from a drive in Windows that is literally encrypted and you have to pay a ransom fee if you ever again hope to see important data you don't have backed up. There are many such fake web pages that attempt to lock the user to a particular page, and it is very easy to defeat. Some say it's the FBI, the CIA, or other fake pages demanding you call you toll free number to "fix" it.

  • by astone8122,

    astone8122 astone8122 Jan 22, 2015 10:10 AM in response to Kurt Lang
    Level 1 (4 points)
    Jan 22, 2015 10:10 AM in response to Kurt Lang

    "There are many such fake web pages that attempt to lock the user to a particular page, and it is very easy to defeat."  How do you delete that JavaScript loop?

  • by Kurt Lang,

    Kurt Lang Kurt Lang Jan 22, 2015 10:27 AM in response to astone8122
    Level 8 (38,049 points)
    Mac OS X
    Jan 22, 2015 10:27 AM in response to astone8122

    Sorry, didn't explain that part. You can either:

     

    1. Open Safari's preferences and turn off JavaScript. Then back out of the page, or close the tab. Turn JavaScript back on.

     

    2. Newer versions of these scam pages blocks your ability to even open the preferences. If that's the case, press Command+Option+Esc. Highlight Safari and click Force Quit. Then, hold the Shift key and relaunch Safari. That tells Safari not to reload any previously displayed web sites and will come up either blank, or to your selected home page.

  • by astone8122,

    astone8122 astone8122 Jan 22, 2015 10:57 AM in response to Kurt Lang
    Level 1 (4 points)
    Jan 22, 2015 10:57 AM in response to Kurt Lang

    Thank you!