ShellCodeX
Tools • Events • News • Insights
ShellCodeX Breach Report

Linux Mint Data Breach

linuxmint.com
Limited exposure
Verified breach Passwords exposed
Accounts exposed 144,989
Breach date 21 Feb 2016
Added to tracker 22 Feb 2016
Data classes 8

What happened

In February 2016, the website for the Linux distro known as Linux Mint was hacked and the ISO infected with a backdoor. The site also ran a phpBB forum which was subsequently put up for sale complete with almost 145k email addresses, passwords and other personal subscriber information.

Exposed data

Avatars Dates of birth Email addresses Geographic locations IP addresses Passwords Time zones Website activity

Recommended actions

  • Change your Linux Mint password immediately, and update it anywhere you reused the same password.
  • Enable two-factor authentication on the affected account and on your critical services (email, banking).
  • Watch for targeted phishing emails referencing Linux Mint — attackers weaponise breach data quickly.
  • Exposed identity data raises identity-theft risk — consider credit monitoring or a credit freeze.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP