These days, it's hard to imagine life without our phones, computers, and tablets. We use them for everything, from staying in touch with family to doing our banking.

But this connected world comes with risks. There are people out there who want to trick us, to steal our money or our information. So, just like we lock our doors at night, we need to be careful online.

For Mac users, there's a new cause for concern⁠—a sophisticated phishing scheme that's been making the rounds and could put your personal information at risk.

Phishing is a sneaky trick where scammers pretend to be someone you trust, like your bank or a well-known company, and send you emails or messages asking for your personal details, like passwords or bank account numbers.

This phishing scheme isn't entirely new; it's a wolf in sheep's clothing, having previously preyed upon Windows users with a fair amount of success.

The phishing scheme that targeted Windows has now resurfaced. This time for Mac users. Image source: Photo by SHVETS production from Pexels

The scam is deceptive, using fake security alerts on compromised websites to convince users that their device has been 'compromised' or 'locked'.

These alerts are accompanied by a website freeze caused by malicious code, which adds a layer of authenticity to the scam. Windows users were duped into entering their credentials to regain access, inadvertently handing over the keys to their digital lives to the attackers.

The scam also included a fake helpline, where users were pressured into paying a ransom or granting remote access to their machines.

It was a highly organised scam operation working under the guise of legitimate Microsoft notifications. The phishing sites were hosted on a credible Microsoft domain with frequently changing subdomains, making it harder to detect and shut down.

Now, this phishing campaign has set its sights on a new target: macOS and Safari users. As reported by LayerX Labs, the campaign has adapted to the Mac ecosystem.

This follows the release of anti-scareware tools for other browsers like Edge, Chrome, and Firefox. The modus operandi remains the same, with a few tweaks to make the pages and text more Mac-centric.

The trap is set when a user mistypes a URL, which leads to a compromised ‘parking’ or ‘holding' page and then redirects to the phishing attack page. Here, Mac users may be prompted to enter their Apple credentials under the pretence of fixing a problem with their device.

Despite the sophistication of the campaign, there are telltale signs that can help you identify the scam. LayerX Labs points out that the security pop-ups in the phishing scheme contain spelling errors and don't match Apple's sleek design style.

This is where your critical eye becomes your best defence. Urgent communications or alerts that request sensitive information should always be scrutinized for discrepancies.

To protect yourself, always ensure you type the correct URL for the websites you wish to visit. If in doubt, use a search engine like Google, and be sure to scroll past the paid ads to find the legitimate results.

Additionally, keep abreast of security updates from Apple. Downloading and installing patches as soon as they're available can help safeguard your device from these and other vulnerabilities.

It's not about being afraid but about being smart. Simple things, like strong passwords and being careful about what we click on, can make a big difference. It's about staying safe in this new digital world.

In conclusion, while the convenience of our digital devices is undeniable, so is the importance of cyber vigilance. By staying informed and cautious, you can enjoy the benefits of technology without falling prey to the pitfalls of phishing schemes.

Key Takeaways

• A phishing scam that previously targeted Windows users is now tricking Mac users with fake security alerts.
  
• The scam uses malicious code to freeze websites, creating a false sense of urgency to steal Apple credentials.
  
• Warning signs include spelling errors and design inconsistencies in security pop-ups.
  
• To stay safe, type URLs carefully, update security patches, and avoid clicking suspicious links.

Remember, when it comes to your personal information, it's better to better to err on the side of caution. Have you encountered any suspicious alerts on your computer?

 

[IAN3005]

I don't open anything where I don't recognise the sender... straight to 'junk'

 

[Dynomite]

Always have to be suspicious. This is more difficult if you are in a hurry.

 

[mOiOz]

HAPPENED THIS MORNING... !!! BEWARE
Minutes after logging in, my front page was covered in alert messages telling me someone is attempting to steal my ID and telling me to phone the number shown. NEVER USE THAT NUMBER!

With non-stop alert noises blocking all and every way to access, even when rebooting the modern... it still continued.
I switched it off and waited almost 2 hours and restarted.... again it started, but not immediately, only after clicking the restore notification... the alerts came up again and blocked access again.
I tried reboot again without clicking the restore... and now it's been on for over 4 hours and all seems okay.

PS; A TIP - Always ask the person their full name. They are usually of Indian descent and will give you an English name like James William - this is a definite RED FLAG!

 

[Luckyus]

I just turn it off at the wall, to be quite honest its all starting to guve me the shits, At my age I've still spent more time without a poxy computer than with one?

 

[Leeta069]

I keep getting pop ups in these pages from SDC when I'm trying to read them, from McAfee or whatever it's called. Takes the whole page away and I've lost the story I was reading. Can't do anything but close the window. It's happening about every 4th page I open. I have done a scan and it says my computer is clean.

 

[mOiOz]

You can buy an Ad stopper app, they are relatively inexpensive.
If you're on the computer up to 10 hrs a day, like me... It's a godsend!

 

[Catherines]

I keep getting pop ups in these pages from SDC when I'm trying to read them, from McAfee or whatever it's called. Takes the whole page away and I've lost the story I was reading. Can't do anything but close the window. It's happening about every 4th page I open. I have done a scan and it says my computer is clean.

I had exactly the same thing happen four times today. We don’t use McAfee and never have. Something suspicious there.

 

[MariaG]

Looks like my security program is doing the right things.
I haven't had a major issue for quite a long time.
I have had the odd email that has been sent to Spam. Those Richard heads keep trying under lots of different names. My system keeps giving them a boot where the sun don't shine.
Recently, it's been about phone calls. If I don't recognise it, I get my security program to block it.
We just have to get used to saying NO to everything that is not familiar.

 

[Kevin. A.]

If you are ever on your computer and it freezes or puts up warning messages that your device has been infected, and you must act now and contact a number flashing on your screen for technical help (scam). Use these three keys on your keyboard at the same time. "ALT", "Ctrl" and Delete keys. A menu will pop up asking you if you would like to restart or turn off your computer. If you click "Turn off your computer". This will take you out of the malicious page giving you the scammers message and phone number (this is a scam message). When you restart your computer run your antivirus software immediately to make sure there is no malicious code on your device. Follow any recommendations that your antivirus software alerts suggest that you to do to clean up your device and remove any potentially damaging or malicious files.

 

[Kevin. A.]

I keep getting pop ups in these pages from SDC when I'm trying to read them, from McAfee or whatever it's called. Takes the whole page away and I've lost the story I was reading. Can't do anything but close the window. It's happening about every 4th page I open. I have done a scan and it says my computer is clean.

Sounds like you may have an issue with some files on the program. If you uninstall the program from your computer and then reinstall a clean updated version back onto your computer. This should resolve the issues. If you go into systems manager on your computer there is a section where you can view all of the files/ application on your computer. If you find the application giving you the issues and remove it (uninstall) this will delete the file. Then go back and search for the application and reinstall a clean UpToDate version. If you are unsure how to do this correctly (without deleting other essential files) then take your device to a computer tech shop (There is usually on in the local shopping centers). Explain to them what is going on, and they will assist you (at a cost) to fix the problem. Most programs automatically update to the latest version of the software unless you have this turned off. You can rectify this by turning "ON". "Auto software updates".