Free download manager releases scripts to test for Linux malware

Tip & Tricks
2023, Sep 23

The developers of Free Download Manager (FDM) have published a script to check if Linux devices have been infected through a recently reported supply chain attack.

Free Download Manager is a popular cross-platform download manager that offers torrent downloading, proxies, and online video downloads through a user-friendly interface.
Mr. Kaspersky revealed that the project's website was compromised at some point in 2020, redirecting a portion of Linux users who tried to download the software to a malicious website.
This website has dropped a trojanized FDM installer for Linux. This installer installed the Bash information stealer and a backdoor that established a reverse shell from the attacker's server.

Although many users reported strange behavior after installing the malicious installer, the infection remained undetected for three years until Kaspersky's report was published.

Free Download Manager Response
As the issue gained traction, FDM investigated and discovered that reports by Kaspersky and other companies about their websites being compromised were ignored due to errors in their contact systems. Surname.

The security notice on the FDM site explains: “It appears that a specific web page on our website has been compromised by a group of Ukrainian hackers, exploiting it to distribute malware.”

“Only a small group of users, especially those who attempted to download FDM for Linux between 2020 and 2022, were potentially exposed.”

"Interestingly, this vulnerability was accidentally resolved during a routine website update in 2022."

The developers say the site was compromised through a website vulnerability, which allowed attackers to inject malicious code that altered the download page for a small percentage of visitors.

Today, FDM released a script that will scan Linux computers to check if they are infected with information-stealing malware from this campaign.

The script is available from here and running it is a two-step process from the terminal:

chmod +x linux_malware_check.sh
./linux_malware_check.sh
Users should note that the scanning script will only determine if malware is installed by looking for the presence of certain files on the system, not removing them.

Therefore, if the scanner finds anything, users must manually remove the malware or use additional security tools to locate and remove the malware files.

FDM's recommended action is to reinstall the system.

News Related

Apr 18, 2025

Do banks refund scammed money? How to get your money back?

When you are scammed and lose money in your bank account, getting it back is not always easy. However, depending on the specific situation and your actions, you still have a chance to get your money back. The article below will help you understand the future of your scammed money, and provide the
Apr 18, 2025

Important Notice: RICE VPN Switches to Premium Service

Hello,We would like to send you an important announcement: VPN RICE will officially stop providing free service in the near future.The reason for this change is to ensure better service quality, faster speed and higher security for users. With the Premium model, you will receive:* Unlimited
Apr 18, 2025

What is IP rotation and how does it work?

Have you ever had trouble accessing a website, noticed price discrepancies for the same product, or worried about websites tracking your online activity? These situations often have to do with how websites recognize and handle your IP address—a unique string of numbers associated with your
Apr 18, 2025

Your stolen data could be used in fraudulent AI scams

A leaked email or phone number may seem harmless at first glance, but when AI gets involved, things can get more dangerous than ever.Cybercriminals don’t just stop at stealing data; they sell it on the dark web, where AI technologies are used to carry out sophisticated social engineering
Apr 18, 2025

Is Facebook Still Relevant in 2025?

Facebook just hit a major milestone: 21 years old. It’s the legal drinking age in the United States, and it’s a symbol of adulthood. But as the platform matures, questions about its relevance and role in the social media ecosystem have never been more pressing. Is Facebook still a place
Apr 18, 2025

What is a residential VPN and how does it work?

What is a residential VPN?A residential VPN is a service that routes your traffic through a residential IP address instead of a regular VPN server. Unlike traditional VPN services, residential VPNs typically operate on a peer-to-peer (P2P) model, where users share their IP addresses in exchange for
Apr 18, 2025

How to Get a US IP Address in 2025

If you’re wondering how to get a US IP address — here’s your answer. In short, you can get a US IP address using a VPN (Virtual Private Network), a proxy server, or the Tor browser. Let’s take a look at why you might need a US IP and explore ways to get one.Why do you need a
Apr 18, 2025

What is Private Browsing on iPhone and iPad?

Private Browsing mode on iPhone and iPad is a useful tool to help you protect your privacy while using the internet. This feature prevents your device from saving cookies, browsing history, or autofill data. In other words, any websites you visit won't be recorded, and you won't be exposed
Apr 18, 2025

How to unblock a website when you want

As an Internet user, you’ve probably encountered a situation where you can’t access a website. Blocked websites can be caused by a variety of reasons, from network restrictions to censorship issues. Whatever the reason, not being able to access the content you want is always
Apr 18, 2025

MacBook Security and Privacy Settings You Should Be Using

Your MacBook comes with a number of built-in security and privacy features, but are you taking full advantage of them? As online threats continue to increase, protecting your data and keeping your personal information safe is more important than ever.The good news is that macOS offers a number of
Exclusive Offer
Get your Free 30 days access
Get Offer Cancel