Language Selection

English French German Italian Portuguese Spanish

Linux Mint Website Hacked, Users Tricked Into Downloading ISOs with Backdoors

Filed under
GNU
Linux
Security
Web

Just a few moments ago, Clement Lefebvre, leader of the Linux Mint project, informes users of the popular, Ubuntu-based distribution that the servers where the Linux Mint website is hosted have been hacked to point the download links to specially crafted ISOs.

According to Mr. Lefebvre, it appears that a group of hackers created a modified Linux Mint ISO, which included a backdoor. Then, they hacked into the Linux Mint website and modified the download links to trick users into downloading the malicious ISO image.

Read more

More on the Story

  • Linux Mint hacked, ISO images compromised

    The Linux Mint team revealed today that compromised ISO images of Linux Mint have been distributed from the official website on February 20th, 2016.

  • Linux Mint website hacked, malicious ISO offered on Saturday

    In a surprising announcement, Clement Lefebvre -- head of the Linux Mint project -- said that the Linux Mint website had been compromised and that the hackers were able to edit the site to point to a malicious ISO of Linux Mint 17.3 Cinnamon edition on Saturday 20th, February.

    If you downloaded the Cinnamon edition prior to Saturday or downloaded a different version/flavour (including Mint 17.3 Cinnamon via torrent or direct HTTP link) you aren't affected. It's worth mentioning that since the issue was caught, everything has since returned back to normal now so it's safe to download the Linux Mint ISOs again.

  • Beware of hacked ISOs if you downloaded Linux Mint on February 20th!

    We were exposed to an intrusion today. It was brief and it shouldn’t impact many people, but if it impacts you, it’s very important you read the information below.

  • Linux Mint downloads (briefly) compromised

Latest on Linux Mint

Response and Lessons

  • All forums users should change their passwords.
  • Backdoored Linux Mint, and the Perils of Checksums

    Someone hacked the website of Linux Mint — which, according to Wikipedia’s traffic analysis report is the 3rd most popular desktop Linux distribution after Ubuntu and Fedora — and replaced links to ISO downloads with a backdoored version of the operating system. This blog post explains the situation.

    [...]

    Besides the fact that the website isn’t available over HTTPS so network attackers could change those MD5 checksums to whatever they want as you load the blog post, MD5 is entirely broken and has been for many years. MD5 should never be relied on for verifying that you have the legitimate version of a file. It would not be difficult for someone to generate a backdoored Linux Mint ISO that has the same MD5 checksum as the legitimate ISO. Likewise, while SHA1 is considerable stronger, it also should not be used for security purposes anymore. Wikipedia’s SHA1 article says: “SHA-1 is no longer considered secure against well-funded opponent.”

  • Lessons from the Linux Mint Hack

    Unless you’re completely unplugged from the Linux news media, by now you’ve heard about the exploit that affected both the Linux Mint WordPress site and the Linux Mint 17.3 Cinnamon edition.

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

More in Tux Machines

Google seeks dev feedback for putting AI on Raspberry Pi

Google will bring its AI and machine learning technology to the Raspberry Pi this year, and has posted a survey seeking input. Google is planning to deliver tools for the Raspberry Pi later this year built around its artificial intelligence and machine learning technology, according to a Raspberry Pi Foundation blog entry. The announcement links to a Google survey that seeks to determine what kind of tools RPi developers would find most useful. Read more

Hands-On: Installing openSUSE Tumbleweed, Manjaro, and Debian GNU/Linux on my new notebook

In my previous post about installing Linux on my new, very low-priced laptop (the Asus X540S), I went through the initial setup of Windows 10 Home. My first impressions of the laptop were very mixed. The size and weight are nice, but the overall construction doesn't feel very good. The case feels like very thin plastic, the keyboard doesn't feel good at all, it has a particularly cheesy version of the dreaded "clickpad" (a touchpad with integrated buttons), and the power connection didn't feel very stable. Read more

Rugged, compact IoT gateway runs Linux on Apollo Lake

Axiomtek’s DIN-rail ready “ICO100-839” IoT controller offers an Atom x5-E3930, 8-bit DIO, mini-PCIe, mSATA, extended temp support, and a compact footprint. The ICO100-839 is one of the first embedded computers to use Intel’s recent “Apollo Lake” generation of 14nm-fabricated Atom SoCs. Like the Advantech UTX-3117, the fanless ICO100-839 is referred to as an IoT gateway, and runs on a dual-core Atom X5-E3930 clocked from 1.3GHz to 1.8GHz. The ICO100-839, which is also called an industrial IoT controller, is a stripped down, but updated version of the Bay Trail Atom based ICO300 DIN-rail controller. Last year, the ICO300 was followed by an almost identical ICO300-MI gateway, which added Intel IoT Gateway Technology and Wind River Intelligent Device Platform software. Read more

today's leftovers

  • GoboLinux 016
    GoboLinux is available for 64-bit x86 computers exclusively. The ISO I downloaded for GoboLinux 016 was 958MB in size. Booting from the installation media brings up a text-based menu system where we are asked to select our preferred language from a list of six European languages. We are then asked to select our keyboard's layout from another list. At this point, the system drops us to a command prompt where we are logged in as the root user. The default shell is zsh. A welcome message lets us know we can run the startx command to launch a desktop environment or run the Installer command to begin installing the distribution.
  • Solus Linux Working On A Flatpak-Based, Optimized Steam Runtime
    The Solus Linux developers have been working on their "Linux Steam Integration" for Steam and improvements around the Steam runtime, with this being one of the distributions interested in good Linux performance and making use of some Clear Linux optimizations, while their next step is looking at Flatpak-packaging up of libraries needed by the Steam runtime to fork a Flatpak-happy Linux gaming setup.
  • It’s ‘Best Linux Distro’ Time Again
    It’s time to start the process of choosing the FOSS Force Reader’s Choice Award winner for Best Desktop Linux Distro for 2016. This is the third outing for our annual poll, which began in a March, 2015 contest that was won by Ubuntu, which bested runner-up Linux Mint by only 11 votes. Last year we moved the voting up to January, in a contest which saw Arch Linux as the overall winner, with elementary OS in second place. Just like last year, this year’s polling will be a two round process. The first round, which began early Friday afternoon when the poll quietly went up on our front page, is a qualifying round. In this round, we’re offering a field of 19 of the top 20 distros on Distrowatch’s famous “Page Hit Ranking” list. Those whose favorite distro isn’t on the list shouldn’t worry — your distro’s not out of the game yet. Below the poll there’s a place to write-in any distro that’s not in the poll to be tallied for possible inclusion in the second and final round of polling to follow.
  • Tracktion NAMM 2017 Preview [Ed: Raspberry Pi with Ubuntu]
  • Snapdragon 410E SBC offers long lifecycle support at $85
    The Linux/Android-ready Inforce 6309L is a cheaper version of the DragonBoard 410c-like Inforce 6309. It sacrifices GbE and LVDS, but has 10-year support. Inforce Computing has released a more affordable and slightly less feature rich version of its commercial-oriented, circa-2015 Inforce 6309 SBC. Like the Inforce 6309, the new Inforce 6309L has the same 85 x 54mm footprint and much the same feature set as Arrow’s Qualcomm-backed, community-backed DragonBoard 410c SBC. It also offers the same Linux and Android BSPs used by the DragonBoard 410c, one of the first SBCs to adopt Linaro’s 96Boards form-factor.
  • It’s time to spring-clean your IT contracts
    The start of a new year is a time for review and planning, in business, as well as in our personal lives. It’s likely that you will be focused on finalising your company’s objectives and strategy for the year ahead. But it’s also important to consider whether the tools and processes that you have in place remain fit for purpose – and that includes your contract templates and contractual risk and compliance processes. When it comes to the law, “the only thing that is constant is change”. Without fail, each year brings the introduction of new legislation, case law and regulatory guidance that may have an impact on your contracts – whether it’s the terms of use or privacy policy for your website or app, or the contract terms that you use when supplying or purchasing technology services. Therefore, it’s important to carry out a regular review of your contract terms (and any existing contracts) to make sure that they remain compliant with law and are future-proofed as much as possible in terms of new legal and regulatory developments that you know are around the corner.
  • Chinese investors buy owner of PCWorld, IDC
    International Data Group, the owner of PCWorld magazine, several other tech journals and the IDC market research organisation, has been bought by two Chinese investors. China Oceanwide Holdings Group and IDG Capital (no affiliate of IDG) have paid between US$500 million and US$1 billion for IDG sans its high-performance computing research businesses. The two Chinese entities had made separate bids but were told by investment banker Goldman Sachs to join hands. The sale of IDG has been cleared by the US Committee on Foreign Investment and should be completed by end of the first quarter this year. China Oceanwide Holdings Group, founded by chairman Zhiqiang Lu, is active in financial services, real estate, technology, and media among others.