Linux Mint Website Hacked, ISO compromised!
On the 20th February 2016, the Linux Mint website was hacked and some ISO images were swapped. If you think this affects you continue reading!
Update 5 – 24/02/2016
In a Linux Mint Update Manager commit, a code detecting the malware has been added. This functionality will warn the user in the case the malware is present on their system.
Update 4 – 23/02/2016
LinuxMint.com is now up again.
Update 3 – 21/02/2016
LinuxMint.com has been shut down temporarily to investigate the issue and fix eventual leftovers.
Update 2 – 21/02/2016
Update 1 – 21/02/2016
— A️Nℹ️S ⚜ (@0xUID) 21 Febbraio 2016
During the 20th February 2016 the Linux Mint website was hacked, says head of the Linux Mint project Clement Lefebvre. According to the founder of one of the most known Linux distributions, the website was compromised so that it redirected users to fake ISOs with backdoors inside it. Furthermore the situation hasn’t settled down (according to Clement) but they’re investigating about the issue. All of this can be found in a blog post on the Linux Mint blog.
What to do if you’re worried
According to the blog post, only the Linux Mint 17.3 with Cinnamon ISO has been compromised, if you think you’ve download that ISO during the 20th or just want to be safe here are the md5 checksums to ensure your image hasn’t been compromised.
What to do if you got the compromised ISO
Directly from the blog post from Clement Lefebvre, head of the Linux Mint project:
Delete the ISO. If you burnt it to DVD, trash the disc. If you burnt it to USB, format the stick.
If you installed this ISO on a computer:
- Put the computer offline.
- Backup your personal data, if any.
- Reinstall the OS or format the partition.
- Change your passwords for sensitive websites (for your email in particular).
I highlighted the concrete actions you can take in order to avoid unpleasant things. For those who are thinking they are safe even with the compromised ISO: be not! Those ISO are potentially deadly for everything you do with the operating system installed from those.