Trojan

Did you download a Linux Mint ISO yesterday?

Mike Hudson

Linux Mint have openly admitted that their WordPress installation was compromised yesterday (20th February 2016) and links to their Linux Mint 17.3 Cinnamon edition ISOs where replaced with links to an ISO with a baked in back door!

Users who downloaded the ISO from their HTTP links yesterday may have inadvertently downloaded a copy with the Tsunami Trojan built in. 

Those who downloaded the ISOs via torrent links will not have been affected by the compromised ISOs, due to the way torrents work. However those who used standard HTTP requests may find they’ve a rogue file in /var/lib/man.cy 

Not only did they redirect the download links, they also stole the databases.. These are now for sale on the “dark net” for $86 as the screen shot on the below tweet shows

If you’ve downloaded the ISO, the owners of Linux Mint are strongly recommending you reinstall the OS, you can read more about the attack over at the Linux Mint Blog

Read More

Bash/QHost.WB found in the wild

Mike Hudson 1 Comment

FlashA new trojan called Bash/QHost.WB is doing it’s rounds amongst Mac users, the trojan purports to be a Adobe Flash installer for OS X. Whilst secretly hijacking your hosts file, redirecting all attempts to access Google webpages to a fake page hosted in the Netherlands.

The trojan is also designed to bug the user and presumably earn the writer cash by popping up adverts on the victims machine.

Many people believe OS X is immune from virus infection due to its need for elevated privileges in order to install such software. However users are being tricked into thinking this is the real thing, and are installing the trojan.

It’s always best to avoid third party software hosting sites when downloading/installing software, and for Flash you’re best downloading direct from Adobe‘s website. Not only will this ensure you get a true Flash installation, but also that you get the latest available version.

If you have been infected by this, or any other Mac virus you can download a copy of Sophos AntiVirus for Mac for free from Sophos’s website.

Read More