[TriLUG] Linux Mint Site Hacked
Christopher Blackmon via TriLUG
trilug at trilug.org
Mon Feb 22 10:59:46 EST 2016
It's not as if they attacked the OS itself... they hacked the web siteand replaced a .iso with a backdoored one.
christopher
From: tj via TriLUG <trilug at trilug.org>
To: John Vaughters <jvaughters04 at yahoo.com>; Triangle Linux Users Group General Discussion <trilug at trilug.org>
Sent: Monday, February 22, 2016 10:55 AM
Subject: Re: [TriLUG] Linux Mint Site Hacked
Linux os not a toy anymore :)
on my understanding, they attack Mints due on many users of Mints came for
"user friendly" Windows, where to try windows alternative. They do not
understand MD5SUM or checking after downlonding the ISO fie. As I remember
downloading ISO WINS 10, none told me to check MD5SUM :D
try to attack on Centos :)... I doubtly they cam make it succesfuly
compared with Mints.
or
try to attack Fedora :P or Ubuntu....
On Mon, Feb 22, 2016 at 9:52 AM, John Vaughters via TriLUG <
trilug at trilug.org> wrote:
> So is this the beginning of larger Linux Crack Attacks?
>
> A big reason Linux has remained secure is nobody was attacking it, because
> their was little bang for the effort. Windows is the right place for
> maximum exposure. While that has not changed, Is Linux starting to look
> enticing enough to build attacks?
>
> One of the latest trends are the immediate down stream versions of linux.
> I am not a fan of these because at some point, the Crack Attacks will show
> up in these immediate streams. We have been spoiled because attackers
> generally did not care about Linux. That may be changing and it will not be
> fun. While linux has a reputation for security, that is true only in large
> part because Linux has not been targeted. What may be true is that the User
> community will find the attacks quicker. We can only hope.
>
> The silver lining is that Linux is getting HUGE distribution these days.
> It is basically everywhere. My prediction that Linux will become the
> undisputed computing King back in 2000 holds true and in fact I would say
> it is happening faster than I expected.
> So here we are with the Yin/Yang results.
> John Vaughters
>
> On Monday, February 22, 2016 7:15 AM, Ken MacKenzie via TriLUG <
> trilug at trilug.org> wrote:
>
>
> Well according to that I am not in the pool. I didn't think I was as I
> had
> no need to be a forum member. I mostly use Mint for other people's
> machines.
>
> When the forum comes back on line I am going to double check though.
>
> Ken
>
> On Mon, Feb 22, 2016 at 7:12 AM, Christopher Blackmon <ckblackm at yahoo.com>
> wrote:
>
> > Forum info was posted and about 70k email addresses have
> > been entered here: https://haveibeenpwned.com/
> >
> > You can check and see if you were on the list.
> >
> > Christopher
> >
> >
> > ------------------------------
> > *From:* Ken MacKenzie via TriLUG <trilug at trilug.org>
> > *To:* Triangle Linux Users Group General Discussion <trilug at trilug.org>
> > *Sent:* Monday, February 22, 2016 7:04 AM
> > *Subject:* [TriLUG] Linux Mint Site Hacked
> >
> > So I am figuring most have seen the news but if not:
> >
> >
> >
> http://www.zdnet.com/article/hacker-hundreds-were-tricked-into-installing-linux-mint-backdoor/
> >
> > Funny thing is I actually grabbed an iso that day. Didn't install it yet
> > as it was for a computer that was waiting on hardware first. Deleted it
> as
> > soon as I heard.
> >
> > Supposedly according to the hacker he got the forum and forum passwords
> > cracked as well. In case anyone was on the forums. I don't recall if I
> > had a login there, site is still down for me to check.
> >
> > Ken
> > --
> > This message was sent to: ckblackm at yahoo.com <ckblackm at yahoo.com>
> > To unsubscribe, send a blank message to trilug-leave at trilug.org from
> that
> > address.
> > TriLUG mailing list : http://www.trilug.org/mailman/listinfo/trilug
> > Unsubscribe or edit options on the web :
> > http://www.trilug.org/mailman/options/trilug/ckblackm%40yahoo.com
> > Welcome to TriLUG: http://trilug.org/welcome
> >
> >
> --
> This message was sent to: John Vaughters <jvaughters04 at yahoo.com>
> To unsubscribe, send a blank message to trilug-leave at trilug.org from that
> address.
> TriLUG mailing list : http://www.trilug.org/mailman/listinfo/trilug
> Unsubscribe or edit options on the web :
> http://www.trilug.org/mailman/options/trilug/jvaughters04%40yahoo.com
> Welcome to TriLUG: http://trilug.org/welcome
>
>
> --
> This message was sent to: fendy <bimasakti at gmail.com>
> To unsubscribe, send a blank message to trilug-leave at trilug.org from that
> address.
> TriLUG mailing list : http://www.trilug.org/mailman/listinfo/trilug
> Unsubscribe or edit options on the web :
> http://www.trilug.org/mailman/options/trilug/bimasakti%40gmail.com
> Welcome to TriLUG: http://trilug.org/welcome
>
--
This message was sent to: ckblackm at yahoo.com <ckblackm at yahoo.com>
To unsubscribe, send a blank message to trilug-leave at trilug.org from that address.
TriLUG mailing list : http://www.trilug.org/mailman/listinfo/trilug
Unsubscribe or edit options on the web : http://www.trilug.org/mailman/options/trilug/ckblackm%40yahoo.com
Welcome to TriLUG: http://trilug.org/welcome
More information about the TriLUG
mailing list