Skip to main content

The biggest cybercriminals on the internet are now targeting Macs

The cybercriminal gang LockBit has now set its sights on Apple products with the development of its first ransomware for Macs, according to 9to5 Mac.

The Security research group MalwareHunterTeam (via Brett Callow) recently discovered that LockBit appears to have developed a ransomware build that is compatible specifically with macOS. The never-before-seen ransomware might be a first for LockBit, as the gang typically develops on Windows, Linux, and virtual host machines, the publication added.

A stack of MacBooks is pictured from the top down.
Image used with permission by copyright holder

The Mac-specific ransomware seems to target Apple Silicon Macs and is listed on the web under the build name locker_Apple_M1_64, according to researchers.

Another older Twitter account called vx-underground shows mention of the LockBit ransomware around November 2022, however, MalwareHunterTeam and other researchers note that there seems to be no real indication of the existence of locker_Apple_M1_64 until nowThis current account might be the first public notice that Apple devices are at risk of being affected by ransomware. The research group notes that now that news of the ransomware is out in the open, Macs might be more susceptible to cyberattacks.

LockBit is a notoriously powerful gang on the web, and is known by security analysts as a Russian-based group. Even so, the group leader is believed to operate out of the U.S. or China. The cybercriminal gang is a ransomware-as-a-service (RaaS) operation that allows others to purchase their nefarious products for their own unsavory tasks, 9to5 Mac noted.

Not a single person I can find tweeted LockBit has a Mac targeting version before I did above yesterday, nor can find any blog posts mentioning it, etc. So even if the gang had the first build in 2022 November, for public, this is not late at all, but even yet, seems the first… pic.twitter.com/4iR71cuLpo

— MalwareHunterTeam (@malwrhunterteam) April 16, 2023

The group is already known for its custom ransomware exfiltration tool called StealBIT, and is also known for quickly updating and preparing its infrastructure to keep on top of the cybercriminal food chain, Kaspersky’s Global Research senior security researcher Dmitry Galov said in a statement last year.

Expanding its reach to Apple products might just be an indication of how powerful the ransomware group has become.

Jon DiMaggio from Analyst1 similarly told Wired earlier this year that LockBit’s leader treats the RaaS group very much like a business, with point-and-click access, frequent updates, concern about user feedback, and frequent recruitment from rival gangs to maintain the quality of the ransomware.

Fionna Agomuoh
Fionna Agomuoh is a technology journalist with over a decade of experience writing about various consumer electronics topics…
This new threat proves that Macs aren’t immune from malware
A concept image of a hacker at work in a dark room.

Despite constant warnings, many Mac users have come to believe their computers are safe from malware attacks. A new threat targeting Mac users called Banshee Stealer, however, refutes that notion. As reported on by security firm Elastic Labs, Banshee Stealer targets popular browsers and crypto wallets and even attempts to steal data from iCloud Keychain passwords and Notes.

"Banshee Stealer targets a wide range of browsers, cryptocurrency wallets, and around 100 browser extensions, making it a highly versatile and dangerous threat," Elastic Security Labs said in a report on Thursday.

Read more
You can finally try out Apple Intelligence on your Mac. Here’s how
macOS Sequoia being introduced by Apple's Craig Federighi at the Worldwide Developers Conference (WWDC) 2024.

The second developer beta of macOS Sequoia is open for business and it includes Apple Intelligence features. It looks like anyone can try it out as long as you're not in China. That includes people in the EU -- even though the AI features might not launch there right away. The features available for testing include Writing Tools, Siri, Safari and Mail summaries, Smart Replies, Memory Movies, transcription features, Reduce Interruptions Focus Mode, and a few more. If you want to have a look yourself, here's everything you need to do to download the beta and activate Apple Intelligence.

Before you start, make sure you've backed up your Mac with Time Machine so you can restore the previous version if anything goes wrong. You can also use a secondary device if you have another Apple silicon Mac lying around because beta versions can go wrong and you have to download them at your own risk.

Read more
The best Mac apps for 2024: top software for your Mac
The app store open on a MacBook Pro.

One of the best parts about owning a Mac is the massive ecosystem of superb Mac apps it gives you access to. There are apps available to Mac users no matter what you are looking for, whether that's productivity, photo and video editors, security suites, and more. You can get them from Apple's own App Store or from third-party developer websites, and many of the best Mac apps are even free.

Whether you just bought your first Mac or you're a longtime Apple customer, here's a look at some of the best Mac apps you can get.
Best Mac apps to change your interface

Read more