Updated
Updated · Security Affairs · May 10
JDownloader website serves malicious Windows and Linux installers
Updated
Updated · Security Affairs · May 10

JDownloader website serves malicious Windows and Linux installers

5 articles · Updated · Security Affairs · May 10
  • The compromise ran on 6-7 May, hit the Windows Alternative Installer and Linux shell installer, and delivered a Python remote access trojan after a Reddit user spotted suspicious publisher names.
  • Developers said attackers altered CMS content and download links, not the underlying servers or installer binaries, then took the site offline until verified clean links were restored overnight on 8-9 May.
  • In-app updates, macOS downloads, Flatpak, Winget, Snap and the main JAR package were unaffected; users were told to trust only installers digitally signed by AppWork GmbH.
When even official downloads are compromised, how can users truly verify the software they install is safe?
Is a full OS reinstall overkill after a supply chain attack, or can advanced security tools reliably remove modern malware?
With official sites compromised, what is the next step in secure software distribution beyond today's digital signatures?

Related Stories

Security AffairsMay 10
telefonicatech.comMay 10
bitsight.comMay 10
BleepingComputerMay 10
HackReadMay 10