HomeBlog › Important Security Announcement to Our Valued Users

Important Security Announcement to Our Valued Users

Sep 13, 2023

Dear community,

We wish to address a significant security concern that has recently come to our attention. Upholding your trust is paramount to us, and in our dedication to transparency, we aim to provide a clear and direct account of the situation.

What Happened: Today, informed by the findings from Kaspersky Lab, we became aware of a past security incident from 2020. It appears that a specific web page on our site was compromised by a Ukrainian hacker group, exploiting it to distribute malicious software. Only a small subset of users, specifically those who attempted to download FDM for Linux between 2020 and 2022, were potentially exposed. It’s estimated that much less than 0.1% of our visitors might have encountered this issue. This limited scope is probably why the issue remained undetected until now. Intriguingly, this vulnerability was unknowingly resolved during a routine site update in 2022.

Our Immediate Actions: Upon this discovery, we initiated a thorough investigation. We’re reinforcing our defenses and implementing additional measures to prevent such vulnerabilities in the future.

Recommendations for Users: If you were among the subset of users who tried to download FDM for Linux from our compromised page during the mentioned timeframe, we strongly recommend conducting a malware scan on your system and updating your passwords as a precautionary measure.

Communication Issues: We also discovered an issue with one of our contact forms which might have impeded prompt communication, presumably it was the form used by Kaspersky Lab representatives to reach out to us. If you attempted to reach out regarding this or any related issue without receiving feedback, please contact us again at support@freedownloadmanager.org.

We sincerely apologize for any inconvenience or concern this might cause. Ensuring your digital safety remains at the forefront of our efforts, and we are unwavering in our commitment to safeguard your trust.

Thank you for your patience and understanding. We will keep you updated as we learn more.

Best regards, Free Download Manager team.

Update: Our investigation has shown that the hackers exploited a vulnerability in a script on our site to introduce a malicious file they used to change the https://www.freedownloadmanager.org/download-fdm-for-linux.htm page.

To investigate this problem, we accessed data from our project backups dating back to 2020 and found this modified page, which contained an algorithm that chose whether give users correct download link or the one leading to the fake domain deb.fdmpkg.org containing a malicious .deb file. It had an «exception list» of IP addresses from various subnets, including those associated with Bing and Google. Visitors from these IP addresses were always given the correct download link.

We’re truly sorry about what happened, and we again ask our users who downloaded FDM for Linux within 2020-2022 to check their computers for malware. Also we want to reassure all our Windows and Mac users that for them our website has been safe.

Update 2: We have prepared a bash script that you can use to check the presence of malware in your system.

Launch Instructions:

  1. Download the linux_malware_check.sh script and give it execute permissions. You can do this by running:
    chmod +x linux_malware_check.sh.
  2. Execute the script by running: ./linux_malware_check.sh.

Please note that this script only identifies whether the mentioned potential threats are present on your computer, it does not remove them. If malware is detected, it is highly recommended to reinstall the system.

We once again sincerely apologize for any inconvenience that might have been caused.

2 thoughts on “Important Security Announcement to Our Valued Users”

Leave a Reply

Your email address will not be published. Required fields are marked *

Free Download Manager

Make downloads easier

Latest news
Dec 19, 2023
FDM 6.20 released
FDM, a free download manager, continues to evolve. The new release, 6.20, runs on a completely new core, with UI designed from scratch. We made it to ensure FDM works smoothly on every modern device it can be run on. Also, there are 20+ new features and a dozen bug fixes.
Sep 13, 2023
Important Security Announcement to Our Valued Users
Dear FDM users! We acknowledge the reports regarding the security concerns and assure you that we're actively investigating them. Maintaining your trust is our top priority, and we strive to present a straightforward and honest description of the situation. Unfortunately, we must confirm a past breach of our site. Based on our findings, a specific web page on our site was compromised by…
Mar 31, 2023
FDM is now on Microsoft Store!
Dear FDM users! We are thrilled to announce that Free Download Manager is now available on the Microsoft Store! Download FDM if you haven’t already to make downloading files faster, easier, and more efficient. Please leave a positive review and vote for the app on the store. Your feedback and support will help us to … Continue reading FDM is now on Microsoft Store!
Mar 15, 2023
FDM 6.19 released!
Dear FDM users! We have great news for you! Free Download Manager has been updated to 6.19 and now boasts a wealth of new features and improvements. The revamped version of FDM can launch external applications after download is complete, remember the last used scheduler’s settings as default ones, and automatically remove finished downloads after … Continue reading FDM 6.19 released!
Dec 24, 2022
Merry Christmas and Happy New Year!
Dear All! Holiday greetings to you and the ones you spend it with! At this magical time of year, we would like to take the opportunity to express how grateful we are for your support. With the release of FDM 6.17 boasting a whole range of new features and a completely revamped design of the … Continue reading Merry Christmas and Happy New Year!
News subscription
Enter correct e-mail