• Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
HackRead
  • January 17th, 2021
  • Home
  • Advertise
  • Privacy Policy
  • Contact Us
HackRead
  • Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
  • Follow us
    • Facebook
    • Twitter
    • Linkedin
    • Youtube
Home
Hacking News

Gentoo Linux on Github hacked; repositories modified

June 29th, 2018 Waqas Hacking News 0 comments
Gentoo Linux on Github hacked; repositories modified
Share on FacebookShare on Twitter

Another day, another data breach – This time, it is Linux distribution Gentoo whose GitHub mirror was compromised and content of repositories was modified by unknown hackers.

According to the official statement by the organization, the hack attack took place on June 28th at 20:20 UTC. The exact extent of the attack is still unknown however attempts to regain control of the organization and its repositories are underway.

“All Gentoo code hosted on GitHub should for the moment be considered compromised,” said the alert.

The alert further stated that the attack does not affect codes hosted on the Gentoo infrastructure since its ebuild is hosted on their own infrastructure. The organization also assured users that they are fine as long as they are using rsync or webrsync from gentoo.org.

To clarify: this breach does NOT involve the infrastructure by which @Gentoo Linux distributes and updates its software packages. The GitHub repository is just a downstream mirror. https://t.co/y7fSnDayqo

— Jeff Hubbs (@jeffhubbs) June 28, 2018

“Also, the Gentoo-mirror repositories including metadata are hosted under a separate Github organization and likely not affected as well,” Gentoo wrote on its website.

Gentoo developer Francisco Blas Izquierdo Riera said that the attack allowed hackers to replace the portage and musl-dev trees with malicious ebuilds intended to erase all files from the system.

“Whilst the malicious code shouldn’t work as is and GitHub has now removed the organization, please don’t use any ebuild from the GitHub mirror contained before 28/06/2018, 18:00 GMT until new warning,” Riera warned.

If you are a Gentoo user visit us again as this article will be updated once the organization comes up with additional information detailing how the attack took place.

This is not the first time when Github accounts have been targeted. Last year, Github repositories’ owners were hit by phishing emails that contained malware capable of stealing data through keyloggers and modules that take screenshots.

  • Tags
  • Cyber Attack
  • Cyber Crime
  • Gentoo
  • GitHub
  • hacking
  • Linux
  • security
  • Technology
Facebook Twitter LinkedIn Pinterest
Previous article Are Your Smartphones' Batteries Spying on You?
Next article Worse than Equifax: Personal records of 340M people leaked online
Waqas

Waqas

I am a UK-based cybersecurity journalist with a passion for covering the latest happenings in cyber security and tech world. I am also into gaming, reading and investigative journalism

Related Posts
UN hacked for good as 100K+ employee records accessed

UN hacked for good as 100K+ employee records accessed

Juspay data breach 35 million customers' card data sold on dark web

Juspay data breach 35 million customers' card data sold on dark web

SolarWinds supply chain attack affected 250 organizations

SolarWinds supply chain attack affected 250 organizations

Newsletter

Get the best stories straight into your inbox!



Don’t worry, we don’t spam

Latest Posts
UK Police mistakenly deleted 150,000 arrest records in software glitch
Technology News

UK Police mistakenly deleted 150,000 arrest records in software glitch

2301
Facebook sues developer of data scraping extensions for Chrome
Cyber Crime

Facebook sues developer of data scraping extensions for Chrome

3293
Warning as hackers breach MFA to target cloud services
Cyber Attacks

Warning as hackers breach MFA to target cloud services

5119

HACKREAD is a News Platform that centers on InfoSec, Cyber Crime, Privacy, Surveillance and Hacking News with full-scale reviews on Social Media Platforms & Technology trends. Founded in 2011, HackRead is based in the United Kingdom.

Follow us