Advertisement
Canada markets open in 5 hours 25 minutes
  • S&P/TSX

    22,107.08
    +194.56 (+0.89%)
     
  • S&P 500

    5,248.49
    +44.91 (+0.86%)
     
  • DOW

    39,760.08
    +477.75 (+1.22%)
     
  • CAD/USD

    0.7354
    -0.0018 (-0.25%)
     
  • CRUDE OIL

    81.76
    +0.41 (+0.50%)
     
  • Bitcoin CAD

    95,664.84
    +764.03 (+0.81%)
     
  • CMC Crypto 200

    885.54
    0.00 (0.00%)
     
  • GOLD FUTURES

    2,213.90
    +1.20 (+0.05%)
     
  • RUSSELL 2000

    2,114.35
    +44.19 (+2.13%)
     
  • 10-Yr Bond

    4.1960
    0.0000 (0.00%)
     
  • NASDAQ futures

    18,501.75
    -2.00 (-0.01%)
     
  • VOLATILITY

    12.95
    +0.17 (+1.33%)
     
  • FTSE

    7,931.98
    0.00 (0.00%)
     
  • NIKKEI 225

    40,168.07
    -594.66 (-1.46%)
     
  • CAD/EUR

    0.6810
    +0.0005 (+0.07%)
     

Apple Ransomware Case: What It Means

Apple users just got some bad news: The first successful ransomware attack against Macintosh computers was discovered this past weekend. It certainly won’t be the last. And online crooks have been targeting Windows machines this way for years. Whether you use a Mac or a PC, here’s what you need to know about this attack, and how to protect yourself.

What is ransomware?

Ransomware is a form of malware designed to extract money from individuals and small businesses by holding their data hostage. Imagine coming home to find a big padlock on your front door and a criminal standing next to it, demanding money to let you in. That's ransomware. Only instead of being locked out of your house, you're locked out of all your personal files. The next time you log on, your computer displays a ransom note saying your data has been encrypted, with instructions on how to pay to unlock it.

Can cybercrooks really make money doing this?

Oh, yes. Ransomware is big business. Individual ransoms can range from $200 to $10,000, according to the FBI's Internet Crime Complaint Center, usually paid in the "virtual" currency Bitcoin, which is nearly impossible to trace. The longer you wait to pay, the higher the ransom becomes. The most common ransomware, CryptoWall 3, infected more than 400,000 machines in 2015, costing users $325 million in ransom and damages, according to a report by the Cyber Threat Alliance.

Why is this particular ransomware attack significant?

Because it's the first piece of ransomware to successfully target Apple computers. Nearly all malware affects Windows machines. In part that's because Windows software has traditionally been more vulnerable than Macintosh software, but it’s mostly because Windows software is a much bigger target; Windows PCs outnumber Macs by more than nine to one. From now on, though, Apple users must face the fact that their machines are at risk, too.

How do you get infected?

Most ransomware infections happen when a user is lured by a bogus “phishing” email to a site that infects his or her computer, or by clicking on an attached file that secretly installs it. In this case, however, some people's Macs were infected when they installed a piece of software called Transmission 2.90, which allows them to download large files using BitTorrent's peer-to-peer file sharing protocol. Approximately 6,500 copies of the infected software were downloaded before the problem was detected—a small number in the world of malware.

How did this happen?

It's unclear. But it's possible cybercrooks hacked Transmission's Web site and replaced the good version of its software with an infected one, according to researchers at the security firm Palo Alto Networks, which discovered the problem. Apple issues certificates to software developers, which the Macintosh operating system then checks before it allows users to install the software – like a bouncer checking your ID at the door. After being notified by Palo Alto about the ransomware, Apple revoked Transmission's certificate. Transmission has since issued a clean version (2.92) of its software that removes the infected one.

How can you avoid having your data taken hostage?

You avoid ransomware the same way you avoid any malware infection: By being careful. In this particular case, that wasn't so easy. Users thought they were upgrading software they trusted.

ADVERTISEMENT

But there are things you can do to steer clear of problems.

Don’t casually click a link inside an email; instead, type the Web address directly into your browser. Never open an attachment unless you were expecting to receive it and you're certain of what it is. Don't spend time in the disreputable corners of the Internet that specialize in risqué content or pirated movies; you can get infected simply by visiting a dodgy site. Never install software just because a Web site tells you to do it. And always keep a backup copy of all your personal files on a separate drive or an Internet-based backup system, like SOS Online Backup, iDrive, or Backblaze. That way, if the worst happens, you'll always have access to your most important data—cybercrooks be damned.



More from Consumer Reports:
The best matching washers and dryers
Generator Buying Guide
8 ways to boost your home value

Consumer Reports has no relationship with any advertisers on this website. Copyright © 2006-2016 Consumers Union of U.S.