Linux Mint hacked ISO (backdoor)
Inviato: dom, 21 feb 2016 17:29
ALLERTA: ISO Linux Mint 17.3 Cinnamon violate con backdoors tramite un reindirizzamento del sito
il sito di Linux Mint è stato violato e le ISO di Linux Mint 17.3 Cinnamon compromesse con una backdoor.
Live ISO: se vi è un file in /var/lib/man.cy, allora l'ISO è infetta
Le ISO violate sono su 5.104.175.212 e la backdoor si connette a absentvodka.com.
Who did that?
The hacked ISOs are hosted on 5.104.175.212 and the backdoor connects to absentvodka.com.
Beware of hacked ISOs if you downloaded Linux Mint on February 20th!
What happened?
Hackers made a modified Linux Mint ISO, with a backdoor in it, and managed to hack our website to point to it.
Does this affect you?
As far as we know, the only compromised edition was Linux Mint 17.3 Cinnamon edition.
How to check if your ISO is compromised?
If you still have the ISO file, check its MD5 signature with the command “md5sum yourfile.iso” (where yourfile.iso is the name of the ISO).
The valid signatures are below:
6e7f7e03500747c6c3bfece2c9c8394f linuxmint-17.3-cinnamon-32bit.iso
e71a2aad8b58605e906dbea444dc4983 linuxmint-17.3-cinnamon-64bit.iso
30fef1aa1134c5f3778c77c4417f7238 linuxmint-17.3-cinnamon-nocodecs-32bit.iso
3406350a87c201cdca0927b1bc7c2ccd linuxmint-17.3-cinnamon-nocodecs-64bit.iso
df38af96e99726bb0a1ef3e5cd47563d linuxmint-17.3-cinnamon-oem-64bit.iso
post originale: http://blog.linuxmint.com/?p=2994" onclick="window.open(this.href);return false;
il sito di Linux Mint è stato violato e le ISO di Linux Mint 17.3 Cinnamon compromesse con una backdoor.
Live ISO: se vi è un file in /var/lib/man.cy, allora l'ISO è infetta
Le ISO violate sono su 5.104.175.212 e la backdoor si connette a absentvodka.com.
Who did that?
The hacked ISOs are hosted on 5.104.175.212 and the backdoor connects to absentvodka.com.
Beware of hacked ISOs if you downloaded Linux Mint on February 20th!
What happened?
Hackers made a modified Linux Mint ISO, with a backdoor in it, and managed to hack our website to point to it.
Does this affect you?
As far as we know, the only compromised edition was Linux Mint 17.3 Cinnamon edition.
How to check if your ISO is compromised?
If you still have the ISO file, check its MD5 signature with the command “md5sum yourfile.iso” (where yourfile.iso is the name of the ISO).
The valid signatures are below:
6e7f7e03500747c6c3bfece2c9c8394f linuxmint-17.3-cinnamon-32bit.iso
e71a2aad8b58605e906dbea444dc4983 linuxmint-17.3-cinnamon-64bit.iso
30fef1aa1134c5f3778c77c4417f7238 linuxmint-17.3-cinnamon-nocodecs-32bit.iso
3406350a87c201cdca0927b1bc7c2ccd linuxmint-17.3-cinnamon-nocodecs-64bit.iso
df38af96e99726bb0a1ef3e5cd47563d linuxmint-17.3-cinnamon-oem-64bit.iso
post originale: http://blog.linuxmint.com/?p=2994" onclick="window.open(this.href);return false;