New ransomware-as-a-service targets Mac users: Alert Priority Moderate

19 May 2017

New ransomware-as-a-service targets Mac users: Alert Priority Moderate

Researchers at security firm Fortinet have reported discovering a portal that offers to create ransomware-as-a-service to target Mac users. The malware has been dubbed MacRansom.

Ransomware is malicious software that makes data or systems unusable until the victim makes a payment.

What to do now

This alert is supplied as information only, but it is a timely reminder that while malware might be more common for the Windows platform, Mac users need to keep their computers safe too. Protect your Mac by using anti-virus software, ensure that you agree to install updates as they become available and use safe behaviours online to help avoid becoming a victim.


While similar services have been reported by other security researchers in the past, the recent WanaCry ransomware incident shows how important it is to have anti-virus software and to ensure your operating system is up to date.

The researchers also report that because of the way the malware encrypts files, decryption, or restoration of those files is likely to be difficult.

Staying safe

We recommend that you proactively protect yourself from the effects of ransomware by creating regular backups of your important files and storing them offline. Learn how to back up files.

More information

Stay Smart Online has more information about how to protect yourself from malware and ransomware.

The information provided here is of a general nature. Everyone’s circumstances are different. If you require specific advice you should contact your local technical support provider.

Thank you to those subscribers who have provided feedback to our Alerts and Newsletters. We are very interested in your feedback and where possible take on board your suggestions or requests.

This information has been prepared by the Attorney General’s Department (‘the Department’). It was accurate and up to date at the time of publishing.
This information is general information only and is intended for use by private individuals and small to medium sized businesses. If you are concerned about a specific cyber security issue you should seek professional advice.
The Commonwealth and all other persons associated with this advisory accept no liability for any damage, loss or expense incurred as a result of the provision of this information, whether by way of negligence or otherwise.
Nothing in this information (including the listing of a person or organisation or links to other web sites) should be taken as an endorsement of a particular product or service.
Please note that third party views or recommendations included in this information do not reflect the views of the Commonwealth, or indicate its commitment to a particular course of action. The Commonwealth also cannot verify the accuracy of any third party material included in this information.