Password-stealing Linux malware served for 3 years and no one noticed
It's not too late to check if a Linux device you use was targeted.
The site, freedownloadmanager[.]org, offered a benign version of a Linux offering known as the Free Download Manager. Starting in 2020, the same domain at times redirected users to the domain deb.fdmpkg[.]org, which served a malicious version of the app.
https://arstechnica.com/security/2023/09/password-stealing-linux-malware-served-for-3-years-and-no-one-noticed/ #Linux #password #stealing #malware #backdoor
Matt Willemsen /
npub1j0…s6amv
2023-09-14 09:41:20
Author Public Key
npub1j05uhue97q7lt3vrqk7csw3gx2dt6lnm50udnzd0zfhedf3n362q8s6amvPublished at
2023-09-14 09:41:20Event JSON
{
"id": "7bcc452751981982b95fadfca0ecdca91fcbcf0639e0413b1c7eb9864bcb9c28",
"pubkey": "93e9cbf325f03df5c58305bd883a28329abd7e7ba3f8d989af126f96a6338e94",
"created_at": 1694684480,
"kind": 1,
"tags": [
[
"t",
"stealing"
],
[
"t",
"linux"
],
[
"t",
"password"
],
[
"t",
"malware"
],
[
"t",
"backdoor"
],
[
"proxy",
"https://fedibird.com/users/Nonog/statuses/111062842087613986",
"activitypub"
]
],
"content": "Password-stealing Linux malware served for 3 years and no one noticed\nIt's not too late to check if a Linux device you use was targeted.\nThe site, freedownloadmanager[.]org, offered a benign version of a Linux offering known as the Free Download Manager. Starting in 2020, the same domain at times redirected users to the domain deb.fdmpkg[.]org, which served a malicious version of the app.\nhttps://arstechnica.com/security/2023/09/password-stealing-linux-malware-served-for-3-years-and-no-one-noticed/ #Linux #password #stealing #malware #backdoor",
"sig": "de2f3e43d451bd3969be4f2b749af87df56ba5a79a7dc5a2b4199db928c98f4dbd7df344696fadc26f24e0a1f54c38daec125d34204f60844747accc5d33aa25"
}