Linux Mint Website Hacked, ISO compromised!

Linut Mint 17.2 "Rebecca" with Cinnamon
Linut Mint 17.2 "Rebecca" with Cinnamon

On the 20th February 2016, the Linux Mint website was hacked and some ISO images were swapped. If you think this affects you continue reading!

Update 5 – 24/02/2016

In a Linux Mint Update Manager commit, a code detecting the malware has been added. This functionality will warn the user in the case the malware is present on their system.

Update 4 – 23/02/2016

LinuxMint.com is now up again.

Update 3 – 21/02/2016

LinuxMint.com has been shut down temporarily to investigate the issue and fix eventual leftovers.

Update 2 – 21/02/2016

All LinuxMint.com forum users should change their password. This post from Clement Lefebvre clearly says the database was compromised and all users are invited to change their passwords.

Update 1 – 21/02/2016

According to this Twitter post, someone is trying to sell LinuxMint.com dumped information on an unspecified dark web site.


 

Website hacked

During the 20th February 2016 the Linux Mint website was hacked, says head of the Linux Mint project Clement Lefebvre. According to the founder of one of the most known Linux distributions, the website was compromised so that it redirected users to fake ISOs with backdoors inside it. Furthermore the situation hasn’t settled down (according to Clement) but they’re investigating about the issue. All of this can be found in a blog post on the Linux Mint blog.

What to do if you’re worried

According to the blog post, only the Linux Mint 17.3 with Cinnamon ISO has been compromised, if you think you’ve download that ISO during the 20th or just want to be safe here are the md5 checksums to ensure your image hasn’t been compromised.

What to do if you got the compromised ISO

Directly from the blog post from Clement Lefebvre, head of the Linux Mint project:

Delete the ISO. If you burnt it to DVD, trash the disc. If you burnt it to USB, format the stick.

If you installed this ISO on a computer:

  • Put the computer offline.
  • Backup your personal data, if any.
  • Reinstall the OS or format the partition.
  • Change your passwords for sensitive websites (for your email in particular).

I highlighted the concrete actions you can take in order to avoid unpleasant things. For those who are thinking they are safe even with the compromised ISO: be not! Those ISO are potentially deadly for everything you do with the operating system installed from those.

The following two tabs change content below.
The IT guy with a little boredom look in his eyes, fond of computers since forever he now works as a freelancer in the IT and shares his experiences through this blog.

You may also like...