LockBit ransomware for Mac – coming soon?

LockBit ransomware for Mac - coming soon?

In the last couple of days it has become clear that the notorious LockBit ransomware gang has been exploring creating what could one day become a big headache for users of Mac computers.

Security researchers have found that someone uploaded a ZIP archive to VirusTotal containing different flavours of LockBit’s ransomware encryptors… including a version designed to run on Macs with an Apple Silicon M1 chip.

The good news: Mac security expert Patrick Wardle says the current sample is unsigned (meaning it won’t run easily on macOS), crashes, and can’t currently be considered a threat.

In a nutshell, Wardle says:

“macOS users have nothing to worry about.”

For now at least… when it comes to the current version of LockBit for Mac.

Because the bad news is that this unlikely to be the end of it.

Sign up to our free newsletter.
Security news, advice, and tips.

If an organised ransomware gang like LockBit believes it is worth developing tools to extort even more money from targeted organisations – by encrypting files on Macs as well as PCs and servers – then this is no time for Mac users to scrimp on their security.


Graham Cluley is an award-winning keynote speaker who has given presentations around the world about cybersecurity, hackers, and online privacy. A veteran of the computer security industry since the early 1990s, he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows, makes regular media appearances, and is the co-host of the popular "Smashing Security" podcast. Follow him on Twitter, Mastodon, Threads, Bluesky, or drop him an email.

What do you think? Leave a comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.