New Mac attack is tricking users into thinking their computer is locked — how to stay safe

News
By published

The hackers behind this attack are after your Apple ID and password

MacBook Pro 2023
(Image credit: Tom's Guide)

Though it originally focused on Windows users, a phishing attack has now jumped over to try and trick Mac users into giving up their log in credentials.

According to LayerX Labs, who have been tracking this campaign for more than a year, the phishing attack attempts to trick Mac users into thinking that their computers have been “locked” via a fake security warning that pops up while users are browsing the internet.

The webpage then appears to be frozen which, like most phishing attempts, adds a sense of urgency and fear that something is wrong with your computer. The window that appears displays a warning that the computer has been subjected to a trojan virus and asks the user to enter in their Mac username and password.

It also provides a phone number to contact “support,” however, when Macworld called this number they only got a message playback that said the recipient was not available and to call back between 8am and 5pm – even though they were calling during that time frame. The number is obviously fake and will likely never be answered.

A screenshot of a fake Mac security warning on a colored background

(Image credit: LayerX Labs/Tom's Guide)

The warning message, captured in a screenshot by LayerX Labs, contains some glaring errors that show it’s not legitimate: It does not conform to any of Apple’s styling either in color or general appearance and misspells macOS as “MacOS.”

How to stay safe

A padlock resting next to the Apple logo on the lid of a gold-colored Apple laptop.

(Image credit: robert coolen/Shutterstock)

LayerX Labs reports that users have been stumbling into these phishing attacks mainly by making typos in their browser's address bar which are then leading them to compromised domains. These compromised pages redirect the victim through multiple sites before landing them on the attack page.

The easiest way to avoid this attack is to make sure you're visiting the correct website. Verify that the URL you’re typing into your browser is the correct one, and bookmark sites you visit frequently so you don’t have to type them in each time.

Use a search engine to find a site and then click on the link in the Google results, since if you make a typo, Google will auto correct for you. However, when searching for any site in a search engine, it's always a good idea to scroll down a bit since hackers often use malicious ads to take you to phishing pages too.

Also, always install security patches as soon as they’re released. Although your Mac comes with built-in security in the form of XProtect, it's also a good idea to invest in the best Mac antivirus software too. Likewise, you want to make sure that you know the common techniques and tricks used in phishing attacks, so you can spot them when you see them, too.

If you keep a level head about you, practice good cyber hygiene and educate yourself about the latest threats, you should be able to avoid falling victim to this attack and others like it.

More from Tom's Guide

See more Computing News
Amber Bouman
Amber Bouman
Senior Editor Security

Amber Bouman is the senior security editor at Tom's Guide where she writes about antivirus software, home security, identity theft and more. She has long had an interest in personal security, both online and off, and also has an appreciation for martial arts and edged weapons. With over two decades of experience working in tech journalism, Amber has written for a number of publications including PC World, Maximum PC, Tech Hive, and Engadget covering everything from smartphones to smart breast pumps. 

You must confirm your public display name before commenting

Please logout and then login again, you will then be prompted to enter your display name.

Read more
iPhone 15 Pro Max shown in hand
iMessage under attack from scammers sending phishing messages — don’t fall for it
Malware
New macOS malware uses Apple's own code to quietly steal credentials and personal data — how to stay safe
A hacker typing quickly on a keyboard
Hackers are posing as Apple and Google to infect Macs with malware — don’t fall for these fake browser updates
MacBook Pro 2021 (16-inch) on a patio table
Macs under attack from dangerous malware targeting digital wallets and Apple’s Notes app — how to stay safe
A hacker typing quickly on a keyboard
Hackers can steal your accounts, and all it takes is a double-click — don’t fall for this new form of clickjacking
A person typing on a computer while hackers use phishing to steal a file from their computer
Phishing: What is it, and how to avoid it
Latest in Online Security
MacBook Pro 2023
New Mac attack is tricking users into thinking their computer is locked — how to stay safe
An open lock depicting a data breach
Half a million teachers hit in major data breach with SSNs, financial data and more exposed — what to do now
Green skull on smartphone screen.
Malicious Android apps with 60 million installs bombarding phones with ads and phishing attacks — how to stay safe
Malware
Dangerous new password-stealing trojan automatically reinstalls itself on infected PCs
An FBI agent typing on a computer
FBI issues warning to millions of Americans to avoid these websites that can steal your passwords and banking info
How to delete TikTok
TikTok has rolled out a vital new security feature — here's how to use it
Latest in News
NYTimes Connections
NYT Connections today hints and answers — Friday, March 21 (#649)
Xbox Elite Wireless Controller Series 2
Deleted image reveals Steam games in the Xbox app — here's what it could mean
Severance season 2 finale
How to watch 'Severance' finale online – stream final episode of season 2 tonight
Render of the alleged design of the iPhone 17 Pro
New iPhone 17 Pro dummy leak highlights redesigned camera and part glass body
Nintendo Switch 2
Nintendo Switch 2 just tipped for three display upgrades — here's what we know
Samsung S95F OLED TV
Samsung is developing the successor to OLED TVs — but TCL might beat it to the punch
More about online security
An open lock depicting a data breach

Half a million teachers hit in major data breach with SSNs, financial data and more exposed — what to do now
How to delete TikTok

TikTok has rolled out a vital new security feature — here's how to use it

NYT Strands on a cellphone

NYT Strands today — hints, spangram and answers for game #383 (Friday, March 21 2025)
See more latest
Most Popular
NYT Strands on a cellphone
NYT Strands today — hints, spangram and answers for game #383 (Friday, March 21 2025)
NYTimes Connections
NYT Connections today hints and answers — Friday, March 21 (#649)
Xbox Elite Wireless Controller Series 2
Deleted image reveals Steam games in the Xbox app — here's what it could mean
Cynthia Erivo as Elphaba and Ariana Grande as Glinda in "Wicked"
How to watch 'Wicked' online – stream Oscar-winning movie from anywhere
Severance season 2 finale
How to watch 'Severance' finale online – stream final episode of season 2 tonight
Samsung S95F OLED TV
Samsung is developing the successor to OLED TVs — but TCL might beat it to the punch
Render of the alleged design of the iPhone 17 Pro
New iPhone 17 Pro dummy leak highlights redesigned camera and part glass body
Nintendo Switch 2
Nintendo Switch 2 just tipped for three display upgrades — here's what we know
A still from "John Wick" spinoff "Ballerina" featuring Ana de Armas in a club
'John Wick' spinoff 'Ballerina' just got a new trailer — and I can't wait for it to hit theaters
Large group of protesters in Turkey following Instanbul mayor's arrest
Turkey sees huge VPN usage spike amid reports of social media crackdown