• Welcome to Peterborough Linux User Group (Canada) Forum.
 

Serious Problems with Snap Malware in Canonical Repository

Started by buster, January 27, 2026, 03:04:38 PM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

Print
Go Down Pages1
User actions

buster

January 27, 2026, 03:04:38 PM
 This is from Monday's Distrowatch:

Alan Pope, a former Ubuntu contributor and current Snap package maintainer, has raised a concern on his blog about attackers sneaking malicious Snap packages into Canonical's package repository. "There's a relentless campaign by scammers to publish malware in the Canonical Snap Store. Some gets caught by automated filters, but plenty slips through. Recently, these miscreants have changed tactics - they're now registering expired domains belonging to legitimate snap publishers, taking over their accounts, and pushing malicious updates to previously trustworthy applications. This is a significant escalation." Details on the attack are covered in Pope's blog post.
Father Time remains undefeated.

ssfc72

#1
January 28, 2026, 09:00:30 AM
Thanks for the security heads up, on using Snap package programs. Especially Crypto wallet programs.

An excellent reading article from Alan Pope.

The scammers taking over the expired Domain name of existing older Snap programs and then placing their scamming cryto Snap program as a repacement is really nasty.
Mint 20.3 on a Dell 14" Inspiron notebook, HP Pavilion X360, 11" k120ca notebook (Linux Lubuntu), Dell 13" XPS notebook computer (MXLinux)
Cellphone Samsung A50, Koodo pre paid service
Print
Go Up Pages1
User actions