Sidebar Sidebar
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

Visited a scam website, now concerned about virus/malware

S

scubacat

macrumors member
Original poster
Oct 10, 2011
75
2
I went to a website that looked legitimate on the surface, purchased some items, and now realized I got scammed. When I went back to the website to check my order status, I got a popup on Google Chrome saying that my password had been compromised and I should change it immediately (strangely, I never got any warnings like this on Safari which is my usual browser). I know that viruses are rare in Macs, but am I at risk of having picked up a keyloggers or other malware by visiting this site? Should I be worried about the security of my personal data saved in my MacBook (passwords, credit card, email contacts)? I don't have any sort of anti-virus software on my computer and only use the built-in firewall but wonder if I need to download an anti-virus software (even temporarily to check for anything from that website).
 
You can get some free virus checkers, like DetectX Swift or Malwarebytes and run a check (they have trial versions, which you have to run manually but otherwise are fully functional.) I prefer DetectX because Malwarebytes is a pain to uninstall.

Safari's password panel in the Preferences now shows potentially compromised passwords. I think both it and Google check databases of stolen data. The compromised passwords may have happened a while ago, before you got into the scam site.
 
I would do these things right away:
  • Use Malwarebytes to scan your computer for malware.
  • Use an anti-virus program, such as ClamXav or Sophos, to scan your computer for viruses.
  • If the password Chrome warned you about is used on multiple websites, change your password on each website. Use a unique password for each website.
I would do these things next:
  • If you can't find anything hostile on your machine but are still worried, you could restore or reinstall from a known clean backup. A Time Machine snapshot or a Carbon Copy Cloner clone would work here.
  • Use a non-admin account on your Mac as your main user account. Only use the admin account for troubleshooting or tasks that can't be run from a non-admin account.
  • Install SilentKnight on your machine. It allows you to make sure XProtect and Gatekeeper are always up to date.
  • Consider buying Little Snitch for your Mac. It is essentially a reverse firewall that allows you to monitor all outgoing connections.
(I use all of the software mentioned above on my own machine. I do not have any connections to the developers.)
 
You must log in or register to reply here.
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.
Top Bottom
Back