Xubuntu Website Compromised, Served Malware Downloads
- Thread starter lokamoka820
- Start date
This is: expecting an ISO file to install the distro, but geting a ZIP file instead.
Still better than the 2016 Linux Mint's hacked ISO file.
Still better than the 2016 Linux Mint's hacked ISO file.
Hard to combat this attack from the official site. But surely a .zip file would set off a alarm or two?
Here's the reddit post that first noticed the problem. He said VT picked this up, but didn't say if this happened a day ago or 15 hours ago (when he last edited). This image is identical to the current analysis (26 positive).
Notable absences for me are: Avast, ESET, Kaspersky, and Sophos. And according to this post, McAfee and Crowstrike didn't pick this up as fast as MD either.
Haha, can't even assume that these are Linux guys; they can't get hacked.
Notable absences for me are: Avast, ESET, Kaspersky, and Sophos. And according to this post, McAfee and Crowstrike didn't pick this up as fast as MD either.
Haha, can't even assume that these are Linux guys; they can't get hacked.
Last edited:
file has antivm characteristics
I have the sample, it's a Clipper that replaces a BTC wallet with its creator's wallet in the clipboard.
The PUP isn't detected very often, but the EXE is detected much more frequently (by Bitdefender, Avast, and Kaspersky, for example).
The PUP isn't detected very often, but the EXE is detected much more frequently (by Bitdefender, Avast, and Kaspersky, for example).
You may also like...
-
RVTools Official Site Hacked to Deliver Bumblebee Malware via Trojanized Installer- Started by Parkinsond
- Replies: 0
-
Lumma infostealer malware returns after law enforcement disruption
- Started by KnownStormChaser
- Replies: 0
-
-
