ShellCodeX Breach Report
Linux Mint Data Breach
linuxmint.com
Verified breach
Passwords exposed
Accounts exposed
144,989
Breach date
21 Feb 2016
Added to tracker
22 Feb 2016
Data classes
8
What happened
In February 2016, the website for the Linux distro known as Linux Mint was hacked and the ISO infected with a backdoor. The site also ran a phpBB forum which was subsequently put up for sale complete with almost 145k email addresses, passwords and other personal subscriber information.
Exposed data
Avatars
Dates of birth
Email addresses
Geographic locations
IP addresses
Passwords
Time zones
Website activity
Recommended actions
- Change your Linux Mint password immediately, and update it anywhere you reused the same password.
- Enable two-factor authentication on the affected account and on your critical services (email, banking).
- Watch for targeted phishing emails referencing Linux Mint — attackers weaponise breach data quickly.
- Exposed identity data raises identity-theft risk — consider credit monitoring or a credit freeze.
- Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected?
Check whether your email address appears in this breach.
Check on HIBP