Linux sites fall victim to hacking attack

The Linux Foundation has pulled its sites offline due to a security breach that occurred on 8 September, which it believes was in connection with an attack on kernel.org.

The Linux Foundation has pulled its sites offline due to a security breach that occurred on 8 September, which it believes was in connection with an attack on kernel.org.

The sites have been replaced with an announcement explaining that the Foundation has placed its infrastructure into maintenance mode, after it discovered a security breach on 8 September.

The Foundation claimed that the decision to pull LinuxFoundation.org, Linux.com and their sub-domains down was in the interest of "extreme caution and security best practices". It believed that the breach was in connection to an attack made on kernel.org last month, where the group had discovered a trojan on its back-end machines. At the time of writing, kernel.org still appeared to be down.

The Linux Foundation said that users should consider any passwords and SSH keys used on its sites as compromised, and that if the passwords have been used on other sites, they should be changed immediately. In the meantime, the Foundation said it would be auditing its systems, and would update the notice on its site once it had further information.

"We apologise for the inconvenience. We are taking this matter seriously, and appreciate your patience. The Linux Foundation infrastructure houses a variety of services and programs, including Linux.com, Open Printing, Linux Mark, Linux Foundation events and others, but does not include the Linux kernel or its code repositories," the announcement read.

Newsletters

You have been successfully signed up. To sign up for more newsletters or to manage your account, visit the Newsletter Subscription Center.
Subscription failed.
See All
See All