Free download manager releases scripts to test for Linux malware

Tip & Tricks
2023, Sep 23

The developers of Free Download Manager (FDM) have published a script to check if Linux devices have been infected through a recently reported supply chain attack.

Free Download Manager is a popular cross-platform download manager that offers torrent downloading, proxies, and online video downloads through a user-friendly interface.
Mr. Kaspersky revealed that the project's website was compromised at some point in 2020, redirecting a portion of Linux users who tried to download the software to a malicious website.
This website has dropped a trojanized FDM installer for Linux. This installer installed the Bash information stealer and a backdoor that established a reverse shell from the attacker's server.

Although many users reported strange behavior after installing the malicious installer, the infection remained undetected for three years until Kaspersky's report was published.

Free Download Manager Response
As the issue gained traction, FDM investigated and discovered that reports by Kaspersky and other companies about their websites being compromised were ignored due to errors in their contact systems. Surname.

The security notice on the FDM site explains: “It appears that a specific web page on our website has been compromised by a group of Ukrainian hackers, exploiting it to distribute malware.”

“Only a small group of users, especially those who attempted to download FDM for Linux between 2020 and 2022, were potentially exposed.”

"Interestingly, this vulnerability was accidentally resolved during a routine website update in 2022."

The developers say the site was compromised through a website vulnerability, which allowed attackers to inject malicious code that altered the download page for a small percentage of visitors.

Today, FDM released a script that will scan Linux computers to check if they are infected with information-stealing malware from this campaign.

The script is available from here and running it is a two-step process from the terminal:

chmod +x linux_malware_check.sh
./linux_malware_check.sh
Users should note that the scanning script will only determine if malware is installed by looking for the presence of certain files on the system, not removing them.

Therefore, if the scanner finds anything, users must manually remove the malware or use additional security tools to locate and remove the malware files.

FDM's recommended action is to reinstall the system.

News Related

Jan 29, 2026

What is a P2P VPN and how does it work?

Peer-to-peer (P2P) VPNs are an alternative model to traditional VPNs, which rely on centralized servers to route traffic. Instead of concentrating all data at a single central point, P2P VPNs operate on a distributed network where users directly participate as network nodes. Traffic is transmitted
Jan 29, 2026

What is password cracking and how can you prevent it?

Password cracking is a method used by malicious actors to find passwords by systematically guessing or analyzing stolen and encrypted password data. The use of weak passwords or passwords shared across multiple services makes this type of attack far more effective than most users realize.This
Jan 29, 2026

How can I stop receiving spam messages and stay safe?

Spam messages are unwanted content that appears in your inbox, causing a rapid increase in messages and disrupting the tracking of important conversations or notifications. Beyond simply being annoying, many spam messages pose security risks. While some are harmless mass advertisements or marketing
Jan 29, 2026

What is website copying scam and how can you avoid being scammed?

Overview of Clone Phishing Attacks In recent years, online phishing attacks have steadily increased in both scale and sophistication, making it increasingly difficult to distinguish between legitimate and malicious messages. Among the variations of phishing, clone phishing is considered
Jan 29, 2026

Instructions on how to delete your WeChat account

This detailed guide will help you cancel your WeChat account step-by-step in a simple way. We also analyze important issues you need to consider before proceeding, and explain what will happen to your personal data and related services after your account is canceled. Important notes before
Jan 29, 2026

Discord Malware: A Guide to Staying Safe and Cleaning Your Device

1. Overview of Discord and Information Security Risks Discord is a popular online communication platform with a large number of users and a high level of interaction, especially in the fields of gaming, learning and teamwork. However, the open environment, the ability to quickly share files and the
Jan 29, 2026

How do you ping an IP address?

Ping is a basic network diagnostic utility but plays a fundamental role in system administration and network infrastructure operation, operating at the Network layer (Layer 3) of the OSI model and using the ICMP (Internet Control Message Protocol) protocol. The main function of ping is to check the
Jan 29, 2026

Is Your Facebook Account Hacked? How to Detect and Protect Your Account

If you suddenly receive a message from a friend asking if you have created a “new” Facebook account, it is likely that your profile has been cloned. Account cloning occurs when a bad person takes your photo, name, and public information and creates a fake profile to scam you.What is
Jan 29, 2026

Top 10 Video Games That Will Change How You View Privacy

The “hacking” genre – When gamers become hackers Hack is not just about tapping on the keyboard and “successfully accessing” like in Hollywood movies. In the gaming world, hacking has become a genre of its own, where players not only play the role but also live in the
Jan 29, 2026

What is data corruption and how to prevent it?

When Your Files Suddenly Won't OpenYou click on a file, but it doesn't respond. Or worse, an important document turns into a mess of characters. That's a sign of data corruption — an annoying and potentially devastating occurrence.Data corruption happens unexpectedly, costing you
Exclusive Offer
Get your Free 30 days access
Get Offer Cancel