Could malware spread across our wireless network?

Hello, I need a bit of help. A scammer posing as a Norton employee got access to our MacBook Pro via LogMeIn Rescue for a few minutes before one of our family members forced shutdown. He had ample time to install a bouquet of malware, but Sophos isn't detecting any. Just to be safe, it seems like the best bet for this computer is to reinstall OSX after backing up any necessary files.
What I want to know is, could malware from this attack have spread across our wireless network to our other devices? Our laptops, desktops, phones, etc... On the targetted computer, System Preferences > Sharing shows only Printer Sharing enabled, not Web Sharing, Remote Login, Internet Sharing, or anything else. Is that a good sign? Or could an attacker have leapt from our wireless printer to another computer?
I am more than happy to provide you with any other details--just let me know. Thank you for your help.

Most of the anti-malware packages for the Mac do not detect anything.  All that would be needed is to add an account or launchd .plist to run some software that gives them future access.
You cannot trust that system any longer.
So yes save essential files, erase, and install from scratch, including all applications.  Only restore data files.
Unless that Mac had administrator access to the other Macs without needing to authenticate, it is unlikely they could have spread anything to other Apple devices in your home.  Which is one of the reasons anti-malware packages do not find a lot of malware on Macs.  They tend not to get any via the network.
Social Engineering, such as what happened to you, or getting someone to download and install something with an admin password, is the more common way bad stuff gets into a Mac.
So I would not worry about the other Macs in the house, but do a wipe of the attacked Mac.
Sorry for your loss.

Similar Messages

  • Sharing across a wireless network

    Is there an easy way, other than mobile me, to share my calendar on my iMac with my kid's macbooks across our wireless network?

    1. You could install OSX server on your iMac
    2. You could install Apple Remote Desktop

  • Print Sharing across a wireless network.

    Hello fellow Macsters,
    I am trying to share my HP printer across my wireless network. here is my network setup. I have a wireless network throughout my house. an iMac 20'' desklamp without an airport card is connected to a belkin router via an ethernet cord. That router creates my wireless network, allowing my iBook G4 to conenct to it wirelessly. The wireless signal is continued by an AX in WDS bridge mode, on the second floor of my house. Currently, I can share the printer connected to the iMac, but only when the iMac is on. I would like to be able to share it without leaving the computer on. I know there are multiple ways to do it, but do not know the specifics of them. Could somebody please tell me what they are. Thank you very much.

    Well if its a non network HP printer it will have to be a AEBS. HP dosent make network operable drivers for thier non-network ready printers s and thos eprinters tend to only be PCL and not PostSCript. Since all the network print protocols on the mac rely on PS youre out of liuck unless its connected directly to MAC hardware.
    If youre geeky and feeling ambitious you can probably finde a driver/ppd withh the support you need on linuxprinting.org but good luck trying to get it to work properly. I tried without success for a week to get our HP3500CLat work to work over any network protocol i could get my hands on with no luck. if you (or anyone else reading this) fares better please let me know...

  • Suddenly our windows 7 clients can't connect to our wireless network due to a cert error?

    Our company uses a Ruckus setup for our wireless network.  The laptops have to have a certificate on them issued from our CA and be a member of AD group.  Yesterday we noticed that nobody could connect to the internal wireless network.  In
    the security logs for the computers there is a this error:
    A request was made to authenticate to a wireless network.
    Subject:
        Security ID:        host/xxx-xxxxxxx
        Account Name:        -
        Account Domain:        -
        Logon ID:        0x0
    Network Information:
        Name (SSID):        Forest River Internal
        Interface GUID:        {53b8a5f4-e910-4e3e-ab88-eb4f46356e1f}
        Local MAC Address:    68:94:23:00:26:1F
        Peer MAC Address:    C4:01:7C:4A:88:58
    Additional Information:
        Reason Code:        Explicit Eap failure received (0x50005)
        Error Code:        0x80420202
        EAP Reason Code:    0x80420202
        EAP Root Cause String:    The authentication failed because certificate required for this network has expired on the server computer
        EAP Error Code:        0x80420202
    this cert was is supposed to be good for another year, is there anyway that I can get the CA server to renew this cert or do I need to issue a new one and distribute it?  The other issue I'm running into is I can't seem to get my CA to issue a new computer
    cert.  All the servers are 08 R2 boxes.

    Hi,
    Do you have any progresses on this issue by now?
    Here is a related KB article below:
    Windows 7 does not connect to an IEEE 802.1X-authenticated network if an invalid certificate is installed
    http://support.microsoft.com/kb/2494172
    Best Regards,
    Amy Wang

  • Our iPhones can't find our wireless network, but our MBPs can?

    Using AirPort Express. Me and my friend's MBP can connect to the wireless just fine, and we can see the wireless network name on our MBPs.
    But when we use our iPhones, our wireless network is nowhere to be found, tried resetting to factory settings and restarting modem etc. Same problem happens to other devices i.e. other laptops, other phones, even Apple products, ONLY our MBPs can connect for some odd reason.
    Any ideas on solving this? Thanks...

    Done! I looked through some other threads and someone suggested resetting the entire AirPort with the reset button on the actual device instead of in AirPort Utility. Try that! Works completely fine now! Good luck

  • Trying to connect our exercise bike to our wireless network.  It sees the network, but once pass phrase is put in, it won't connect.  Any suggestions?  We have an Airport Extreme.

    I am trying to connect our exercise bike to our wireless network.  It sees the network, but once pass phrase is put in, it won't connect.  Their tech support said the problem is with the router and we may need to open ports 80, 443 and 4348.  We have an AirPort Extreme and I scanned for open ports and found 80 already open but the others are not.  Tried using Port Mapping, putting the port number 443 in both the Public UDP and TCP fields and the Private UDP and TCP fields also.  The Private IP address defaulted to 10.0.1.201 which is right outside of the DHCP range.  Will this be the IP of the bike or should I change it to something else?  Are the values I put in the fields totally wrong?  Bike is still not connecting.  Thanks for any help!

    Here's an update:
    Now the light is not blinking. It's a solid, consistant green. I don't know if it helps to narrow it down or anything, but I just figured I'd mention it.

  • When I try to get my email and I am outside our wireless network I get a "lost connection to server" message.  I am trying to connect to Outlook.

    When I try to get my email and I am outside our wireless network I get a "lost connection to server " message

    Outlook is a mail client for PCs and Macs. Who is your mail provider? If you're talking about a business mail system, it may not be accessible from outside the company network. You will need to check with your IT department.

  • My husband has a Mac mini, vintage 2009, running Snow Leopard. All other computers and devices in the house are able to connect to our wireless network, but since I upgraded his computer to Snow Leaopard  it won't connect. What is the problem?

    What am I missing here. I'm sure it is some kind of sitting that is not right.
    Thanks Pat

    Sounds familiar:
    lllaassJan 6, 2015 2:12 PM Re: My husband has a Mac mini, vintage 2009, running Snow Leopard. All other computers and devices in the house are able to connect to our wireless network, but since I upgraded his computer to Snow Leaopard  it won't connect. What is the problem?
    Re: My husband has a Mac mini, vintage 2009, running Snow Leopard. All other computers and devices in the house are able to connect to our wireless network, but since I upgraded his computer to Snow Leaopard  it won't connect. What is the problem?in response to Patricia Isaac1
    Power off and then back on the router
    What happens when you enter the network's PW?
    Try forgetting/deleting the network if necessary. To do that go to System Preferences>Network>wifi>Advanced and select the network and click on the minus sign
    Csound1 wrote:
    Turn off the modem and the router, wait 60 seconds. Turn on the modem, wait 60 seconds, turn on the router.

  • Adding clients to our wireless network

    We just added airport express as our wireless router and need help adding our windows xp laptops to the network. I do not see "add wireless clients from the base station menu" and our laptops do not recognize any apple wireless devices. Any help would be greatly appreciated.

    boeeandme wrote:
    I have selected 802.11b/g compatible. The network does not come up in when searching for available networks.
    The advice I gave you applied to SP2 (at least) of Windows XP. I'll guess that those laptops are at least up to SP2 if not SP3. The only other issue would be whether you've configured AirPort's "Wireless Options" panel to "Create a closed network". That would prevent the AirPort unit from broadcasting its "SSID" and would require that you enter the name of the network when trying to connect. I can't tell you how to reach a screen on XP where you'd do that, but it shouldn't be hard to try that approach.
    One other thought: What encryption option have you declared? If you're trying to use WPA2 and those laptops are sufficiently old, it may be that they don't support WPA2. Try turning off encryption temporarily to see if the laptops can connect.
    Do I need to install airport express on the laptops?
    No. I wouldn't expect that to help.
    I do appreciate your help.
    You'd probably be more appreciative if I could give you advice that helped!

  • I am trying to link our xbox and PC into our wireless network.  I am using an apple airport express and it is asking me for a WEP Key.  Where can I find my wep key?

    I am tyrying to link our xbox and PC int oour wireless network.  I am using an apple airport express and it is asking for my WEP Key.  Where do I find it?

    You should be able to setup WPA / WPA2 access, rather than WEP - which is old an less secure. (Unless your devices are too old for WPA??)
    Try this link: http://spotlight.getnetwise.org/wireless/wifitips/apple/apple-wpa.php
    **Edit
    Airport does support the WEP protocol.
    Apple Docs: http://docs.info.apple.com/article.html?path=Airport/5.0/en/ap2084.html

  • Our wireless network always disconnect clients

    Hello,
    I'm newbie on Cisco wireless network, please give me some help on our Cisco WLC 2500, for example how to check and configure channel ?
    Thanks

    Hi Leo,
    After read your link, which file I need to upgrade of the following items ?
    •Early Deployment (ED)—These software releases provide new features and new hardware platform support as well as bug fixes.
    •Maintenance Deployment (MD)—These software releases provide bug fixes and ongoing software maintenance.
    •Deferred (DF)—These software releases have been deferred. We recommend that you migrate to an upgraded release.
    And how to upgrade existing APs from WLC ?
    Thanks

  • Guest access to our wireless network

    I have changed our network over to WPA with PEAP. One the questions that has come up is, how can guest still have access to this wireless access point to access the internet, but not have access to our internal network. Any info would be great.

    I set up two ssids on our network. These map to two different VLANs. One VLAN attaches to the internal network. The other connects to a second firewall with Internet access. This also allows me to test VPN accounts by attaching to the secondary ssid and going out one firewall and back in to the other. Sometimes vendors want to demo something which needs Internet access, and I would rather put them on the secondary firewall which has open access rather than poke a hole in my main firewall. Normal users are not supposed to be on the Internet only ssid. Also you can make the security on your internal network ssid high and the Internet only ssid low.

  • Can't transfer files from my PC to my new Mac over our wireless network

    I have a Linksys WRT54G router connected to a cable modem, which is connected to a desktop PC. I have a Dell laptop connected to the internet wirelessly, and my MacBook Pro is also connected to the internet wirelessly. No problem there, the internet works on both.
    However, I'm trying to transfer my files from the Dell to my new MacBook, and I get to the point where it asks for my username and password. I've typed in everything I can think of, and the Mac gives me Error -43, 'something or other is not found'.
    I don't remember ever assigning myself a username or password when I set up the wireless network. I've had no problem connecting to the Internet with the Dell laptop, but have never been able to share files or a printer with the desktop PC to which the router is connected.
    What's going on here?

    However, I'm trying to transfer my files from the Dell to my new MacBook, and I get to the point where it asks for my username and password. I've typed in everything I can think of, and the Mac gives me Error -43, 'something or other is not found'.
    That would be the username & password of the user account on the Mac.
    (ref: http://www.ifelix.co.uk/tech/3020.html)

  • How can we put our wireless networks on a schedule

    We have two 5508s in a boarding school environment and about 5 wireless networks. Administration wants to know how can we shut down the student networks @ 11:30pm and then have them come on @ 6:00am. Othern than doing it manually is there another way?

    create a time based ACL and apply it on the switch that is connecting to the AP. Keep the following in mind, LWAPP is UDP, the Data is 12222 and LWAPP Control is 12223.
    With ACL block the data path but keep the control path up so AP(s) keep joined to the wlc.
    time-range STUDENT
                      periodic weekends 00:00 to 23:59
                      periodic weekdays 00:00 to 05:59
                      periodic weekdays 23:30 to 23:59
    access-list 101 deny udp any any eq 12222 time-range STUDENT
    access-list 101 permit ip any any

  • Problems connecting my new macbook to our wireless network

    Hello!
    I recently received my new macbook and have tried connecting it to our WEP encrypted network that has been set up on a PC and runs from a Netgear DG834 router.
    I have tried setting up a new network on my macbook, inputting the WEP (hex)key. I have also tried to put a $ before the key, but can't.
    We have added the macbooks mac address to our network.
    Is there anything else I can try? Has anyone had a similar probelm and found the answer?I am desperate!
    Thanks
    eva
    macbook Mac OS X (10.4.8)

    If you can, try disabling WEP and then trying to connect. This will tell you whether your problems are because of WEP or something more fundamental. The new C2D macbooks seem to have a problem whereby they won't connect to some third party access points.
    If you've got an older mac around, try to connect with that - this should also help determine where the problem lies.
    If you can, it might also be worth checking if the router is updated to the latest firmware.

Maybe you are looking for