Linux

9824 readers

558 users here now

A community for everything relating to the GNU/Linux operating system (except the memes!)

Also, check out:

Original icon base courtesy of lewing@isc.tamu.edu and The GIMP

founded 2 years ago

MODERATORS

Ategon@programming.dev

anzo@programming.dev

dwraf_of_ignorance@programming.dev

118

Xubuntu's Official Download got Compromised (www.youtube.com)

submitted 1 day ago by InternetCitizen2@lemmy.world to c/linux@programming.dev

9 comments fedilink hide all child comments

Posting to spread the word and possibly help someone that may be affected.

top 9 comments

sorted by: hot top controversial new old

[–] ikidd@lemmy.world 9 points 19 hours ago* (last edited 19 hours ago) (2 children)

Is there a link that isn't a fucking video?

[–] phraxen@lemmy.world 2 points 13 hours ago

https://archive.ph/iVyD2

[–] InternetCitizen2@lemmy.world -1 points 18 hours ago

At this point, probably.

[–] A_norny_mousse@feddit.org 20 points 1 day ago (1 children)

Official Download or official Downloader?

In other words, what was compromised, the .iso itself or the Windows .exe seen in the screenshot?

[–] unexposedhazard@discuss.tchncs.de 2 points 23 hours ago

Just look at the video...

The download from their official site that would normally give you a .torrent file that would get you a .iso file if you torrented it was replaced with a .exe file instead. So windows users trying to install xubuntu would have their systems compromised if they were unaware of how its supposed to work.

[–] Rentlar@lemmy.ca 32 points 1 day ago (1 children)

Good idea to remember not to click zips or exes if you're expecting a torrent file.

Luckily this malware was relatively benign, changing bitcoin addresses to malicious ones in the clipboard, so if you don't use crypto then you're fine against this attack. No one's funds have made it into the attacker's wallet yet.

[–] Chakravanti@monero.town 2 points 14 hours ago* (last edited 14 hours ago)

Stealing not-BTC-anymore just because the masses have been fooled doesn't mean that everything you do can't be tracked down unless you're ackt-choo-choo-ally an asset of what the AI "see's" backwards. Then they just won't bother to even notice that their own IP address wasn't blared over the TOR tracking log broadcast.

You'll get hung when you buy it off the bisq though so they can backwards slap the punishment of their own theivery when they steal what you paid for again.

I bet you thought it was the drugs itself that made people crazy. MaKing an ULTRA blame game among those who chose not to read.

[–] BananaTrifleViolin@lemmy.world 8 points 1 day ago (1 children)

Quite a bad compromise of Xubuntu's and Canonical's security and also embarrassing.

They're being a bit vague and dismissive of the hack at the moment, as far as I can see there is now only the 24.04 version linked on the downloads page (not even sure the download link works). The recent 25.10 release (released 10th Oct) is no longer visible and the blog posts visible talk about testing for 21.04 (posts from 2021).

So presumably they've reverted to an archived version of their site while they investigate?

[–] unexposedhazard@discuss.tchncs.de 4 points 23 hours ago

The download page is completely unreachable right now for me. Some parts of the website just throw 503 errors.