Patreon Logo Support us on Patreon to keep GamingOnLinux alive. This ensures all of our main content remains free for everyone. Just good, fresh content! Alternatively, you can donate through PayPal Logo PayPal. You can also buy games using our partner links for GOG and Humble Store.
We use affiliate links to earn us some pennies. Learn more.

Xubuntu website hijacked to serve malware

By -
Last updated: 21 Oct 2025 at 12:42 pm UTC

Ouch, the Xubuntu website was recently hijacked and ended up serving Windows malware, and this isn't the first time the Xubuntu site was hit.

Back in September (Reddit), it seemed the Xubuntu blog was briefly attacked to serve slot machine adverts, going by the comments in the Reddit post. This time though, it was a bit more nefarious with the downloads section (specifically the torrent) serving up some sort of crypto malware (Reddit).

Confirming the issue on Mastodon in reply to a question about it, Xubuntu contributor Sean Davis noted:

It is. We’re working with Canonical IS to resolve. Since the servers aren’t owned by our team, there’s little we can do. We’ve since taken down the download page and will be expediting our static site development to replace our aging WordPress instance.

With Wordpress being as popular as it is used across so many sites, anyone running it really does need to ensure it's constantly updated with regular security fixes.

The timing of it is interesting, with Windows 10 recently ending support, so likely the attackers were hoping to hit a few people attempting to move from Windows.

Right now, the Xubuntu website is quite broken with many pages leading to errors. Hopefully they'll be able to sort it out soon.

Article taken from GamingOnLinux.com.
7 Likes
About the author -
author picture
I am the owner of GamingOnLinux. After discovering Linux back in the days of Mandrake in 2003, I constantly checked on the progress of Linux until Ubuntu appeared on the scene and it helped me to really love it. You can reach me easily by emailing GamingOnLinux directly.
See more from me
All posts need to follow our rules. Please hit the Report Flag icon on any post that breaks the rules or contains illegal / harmful content. Readers can also email us for any issues or concerns.
2 comments Subscribe

hardpenguin 11 hours ago
User Avatar
This is extremely scary. Caution is always advised when downloading anything from the internet. Even from a well-respected open source project website.
Kimyrielle 6 hours ago
User Avatar
Caution is always advised when downloading anything from the internet.

While true, this won't help most users one bit. Verifying each and every package in a supply chain is prohibitive for most users, either because they don't possess the necessary tech literacy levels, or simply don't have the time to check fingerprints for each and every package. Not that even that would mean 100% safety, because attackers could also place fingerprints matching their compromised packages while they're in control of the site anyway.

In the end the operators of major, otherwise trustworthy sites really need to treat their resources as what they are: Critical infrastructure.
While you're here, please consider supporting GamingOnLinux on:

Reward Tiers: Patreon Logo Patreon. Plain Donations: PayPal Logo PayPal.

This ensures all of our main content remains totally free for everyone! Patreon supporters can also remove all adverts and sponsors! Supporting us helps bring good, fresh content. Without your continued support, we simply could not continue!

You can find even more ways to support us on this dedicated page any time. If you already are, thank you!
Login / Register