Hackaday [Unofficial]2d ago

This Week in Security: Another Linux Exploit, Ubuntu Knocked Offline, Finals Interrupted, and Backdoored Tools

https://fed.brid.gy/r/https://hackaday.com/2026/05/08/this-week-in-security-another-linux-exploit-ubuntu-knocked-offline-finals-interrupted-and-backdoored-tools/

This Week In Security: Another Linux Exploit, Ubuntu Knocked Offline, Finals Interrupted, And Backdoored Tools

After the CopyFail vulnerability gave root access from any user on almost all distributions last week, this week we’ve got DirtyFrag. This chains the vulnerability in CopyFail (xfrm-ESP) and …

Hackaday
Ján Trenčanský2d ago

RE: https://infosec.exchange/@j91321/116538743903081567

Seen some people online speculating whether #DAEMONTools and #JDownloader were compromised by the same adversary. I guess because people associate both of these tools with piracy?

I would be surprised if this was the case. The DAEMONTools compromise had very competent tradecraft. There was proper enumeration, targeting with different minimalistic payloads. I've seen some of the hands-on activity from mcrypto.chiper payload. It was mostly living-off-the-land. Low noise enumeration, then louder attempts at credential dumping. Skedaddled when they noticed EDR.

JDownloader so far seem like pack a bunch of Python scripts, drop TOR and YOLO.

132d ago
This Week in Security: Another Linux Exploit, Ubuntu Knocked Offline, Finals Interrupted, and Backdoored Tools https://hackaday.com/2026/05/08/this-week-in-security-another-linux-exploit-ubuntu-knocked-offline-finals-interrupted-and-backdoored-tools/
#HackadayColumns #SecurityHacks #Cisa #Copyfail #Cpanel #Daemontools #Ddos #Dirtyfrag #Edge #Oracle #Shinyhunters #Tetra #ThisWeekinSecurity #Ubuntu
This Week In Security: Another Linux Exploit, Ubuntu Knocked Offline, Finals Interrupted, And Backdoored Tools

After the CopyFail vulnerability gave root access from any user on almost all distributions last week, this week we’ve got DirtyFrag. This chains the vulnerability in CopyFail (xfrm-ESP) and …

Hackaday
AA3d ago

DAEMON Tools advisory, updated yesterday: Security Incident Affecting DAEMON Tools Lite: What We Know So Far https://blog.daemon-tools.cc/post/security-incident

More:

Bitdefender: DAEMON Tools Lite breach prompts urgent update after malware-laced installer https://www.bitdefender.com/en-us/blog/hotforsecurity/daemon-tools-breach-malware #infosec #malware #databreach #Daemontools

Security Incident Affecting DAEMON Tools Lite: What We Know So Far

🖱🛠👉👕👈 SOSOrdinet 🎣🖥️🐛 🗞️3d ago

“Un incident potentiel de sécurité” : compromission de #DaemonTools Lite par un Cheval de Troie, depuis début Avril 2026 !

https://blog.sosordi.net/2026/05/un-incident-potentiel-de-securite-compromission-de-daemon-tools-lite-par-un-cheval-de-troie-depuis-debut-avril-2026.html

#securite #date #vieprivee #trojan

The New Oil3d ago

#DAEMONTools devs confirm breach, release #malware-free version

https://www.bleepingcomputer.com/news/security/daemon-tools-devs-confirm-breach-release-malware-free-version/

#cybersecurity

DAEMON Tools devs confirm breach, release malware-free version

Disc Soft Limited, the maker of DAEMON Tools Lite, confirmed that the software had been trojanized in a supply chain attack and released a new, malware-free version.

BleepingComputer
Analyst2074d ago

Daemon Tools Software Trojanized in Supply Chain Attack

Malware was discovered hidden in certain Daemon Tools Lite installers, prompting developer Disc Soft to issue a clean build and confirm a supply chain attack had compromised their system. A malware-free version was released within 12 hours of notification.

https://osintsights.com/daemon-tools-software-trojanized-in-supply-chain-attack?utm_source=mastodon&utm_medium=social

#SupplyChainAttack #MalwareOperations #DaemonTools #EmergingThreats

Daemon Tools Software Trojanized in Supply Chain Attack

Learn how Daemon Tools software was Trojanized in a supply chain attack and what steps to take to secure your system now and prevent future threats effectively.

OSINTSights
Marcel SIneM(S)US4d ago
#DaemonTools: Mit #Malware verseuchte Downloads | Security https://www.heise.de/news/Daemon-Tools-Lite-Infizierte-Installer-durch-Supply-Chain-Attacke-11282006.html #SupplyChain
Daemon Tools: Mit Malware verseuchte Downloads

Offiziell signierte Daemon-Tools-Installer von der Herstellerseite bringen Malware mit. Offenbar durch einen Lieferkettenangriff.

heise online
Marcus Adams4d ago

Headline: DAEMON TOOLS supply chain attack ongoing since April, thousands affected

Subtitle: Security researchers have identified an active supply chain compromise in #DAEMONTools installers impacting users globally since April 2026.

Source: https://www.neowin.net/news/daemon-tools-supply-chain-attack-ongoing-since-april-thousands-affected/

#Security

WinFuture.de4d ago
DAEMON Tools Lite wurde gehackt: Seit Anfang April verteilte die offizielle Website eine mit Trojanern infizierte Version. Betroffen sind Build 12.5.0.2421 bis 12.5.0.2434. #DAEMONTools #Malware https://winfuture.de/news,158542.html?utm_source=Mastodon&utm_medium=ManualStatus&utm_campaign=SocialMedia
Gefahr für Windows-Computer: DAEMON Tools Lite wurde kompromittiert

Ein Angriff auf DAEMON Tools Lite hat wochenlang Windows-Systeme infiziert. Hacker schmuggelten im April einen Trojaner in die offizielle Gratisversion der Software. Nutzer müssen nun schnell handeln und die bereinigte Fassung installieren.

WinFuture.de