Sidebar Sidebar
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

Linux Mint Site and Forum Hacked

9

997440

Cancelled
Original poster
Oct 11, 2015
938
664
I haven't been paying attention to the Linux world as I've been learning OS X, so I come to this news rather late.

On February 20th, a hacker working under the handle "Peace" took control of the website of Linux Mint, a popular Linux distribution derived from Ubuntu (and Debian) targeted toward non-technical users and power users unhappy with modern desktop environments like GNOME 3, KDE Plasma 5, and Unity 7. The hacker replaced the download link for Linux Mint with one which contained a backdoor called Tsunami-an attack which put "several hundred" systems with a fresh installation of Linux Mint in the hacker's control, according to an interview with ZDNet's Zach Whittaker. The same hacker gained control of the Linux Mint user forum, grabbing copies of the entire database twice, copies of which are now for sale on a dark web marketplace for 0.197 bitcoin ($85) per download....
Click to expand...
http://www.techrepublic.com/article/why-the-linux-mint-hack-is-an-indicator-of-a-larger-problem/


As far as the backdoor in an ISO is concerned, it appears that Mint 17.3 Cinnamon, if downloaded on 2/20/16, was the only affected edition.

....According to Mr. Lefebvre, it appears that a group of hackers created a modified Linux Mint ISO, which included a backdoor. Then, they hacked into the Linux Mint website and modified the download links to trick users into downloading the malicious ISO image.

"I’m sorry I have to come with bad news. We were exposed to an intrusion today. It was brief and it shouldn’t impact many people, but if it impacts you, it’s very important you read the information below," said Clement Lefebvre in the announcement.

It would appear that only the Linux Mint 17.3 Cinnamon edition has been compromised at the moment of writing this article, and those of you who downloaded these ISO images on February 20, 2016, need not install them on your computer, but delete them as soon as possible....
Click to expand...
http://news.softpedia.com/news/linu...load-isos-with-backdoors-in-them-500707.shtml
[doublepost=1456956885][/doublepost]A little more info from ZDNet, including an interview with the hacker. It was too easy to accomplish.

....The hacker responsible, who goes by the name "Peace," told me in an encrypted chat on Sunday that a "few hundred" Linux Mint installs were under their control -- a significant portion of the thousand-plus downloads during the day.

But that's only half of the story.

Peace also claimed to have stolen an entire copy of the site's forum twice -- one from January 28, and most recently February 18, two days before the hack was confirmed....
Click to expand...
http://www.zdnet.com/article/hacker-hundreds-were-tricked-into-installing-linux-mint-backdoor/
 
Last edited:
You must log in or register to reply here.
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.
Top Bottom
Back