Password-Stealing Linux Malware Served For 3 Years and No One Noticed

A download site served Linux users malware that stole passwords and other sensitive data for over three years. The site, freedownloadmanager[.]org, redirected users to a domain serving a malicious version of the Free Download Manager. The malware created a permanent backdoor, giving hackers remote control of infected devices. It collected system information, browsing history, saved passwords, cryptocurrency wallet files and cloud services credentials, according to Kaspersky researchers.