Negativo17 Site Has Been Compromised

It is strongly believed that the Negativo17 site has been hacked due to the evidence provided. For more information please go to this reddit post I made on the Fedora subreddit. I have emailed the maintainer, hopefully everything gets sorted out soon. Please be careful.

1 Like

Noooo… and there was just a cuda update from the repo a few hours ago. Wish I hadn’t been so prompt in updating. I’m not sure if there’s much point in undoing the transaction now.

Thanks for investigating and posting.

 cuda                x86_64 1:10.1.168-1.fc30 fedora-nvidia                15 M
 cuda-cli-tools      x86_64 1:10.1.168-1.fc30 fedora-nvidia                27 M
 cuda-cublas         x86_64 1:10.1.168-1.fc30 fedora-nvidia                40 M
 cuda-cublas-devel   x86_64 1:10.1.168-1.fc30 fedora-nvidia                40 M
 cuda-cudart         x86_64 1:10.1.168-1.fc30 fedora-nvidia               133 k
 cuda-cudart-devel   x86_64 1:10.1.168-1.fc30 fedora-nvidia               523 k
 cuda-cudnn          x86_64 1:7.6.0.64-1.fc30 fedora-nvidia               180 M
 cuda-cudnn-devel    x86_64 1:7.6.0.64-1.fc30 fedora-nvidia               159 M
 cuda-cufft          x86_64 1:10.1.168-1.fc30 fedora-nvidia                88 M
 cuda-cufft-devel    x86_64 1:10.1.168-1.fc30 fedora-nvidia               163 M
 cuda-cupti          x86_64 1:10.1.168-1.fc30 fedora-nvidia               1.3 M
 cuda-cupti-devel    x86_64 1:10.1.168-1.fc30 fedora-nvidia                10 M
 cuda-curand         x86_64 1:10.1.168-1.fc30 fedora-nvidia                38 M
 cuda-curand-devel   x86_64 1:10.1.168-1.fc30 fedora-nvidia                61 M
 cuda-cusolver       x86_64 1:10.1.168-1.fc30 fedora-nvidia                49 M
 cuda-cusolver-devel x86_64 1:10.1.168-1.fc30 fedora-nvidia                17 M
 cuda-cusparse       x86_64 1:10.1.168-1.fc30 fedora-nvidia                59 M
 cuda-cusparse-devel x86_64 1:10.1.168-1.fc30 fedora-nvidia                59 M
 cuda-devel          x86_64 1:10.1.168-1.fc30 fedora-nvidia               1.7 M
 cuda-extra-libs     x86_64 1:10.1.168-1.fc30 fedora-nvidia               7.9 k
 cuda-libs           x86_64 1:10.1.168-1.fc30 fedora-nvidia               8.9 M
 cuda-npp            x86_64 1:10.1.168-1.fc30 fedora-nvidia                57 M
 cuda-npp-devel      x86_64 1:10.1.168-1.fc30 fedora-nvidia                57 M
 cuda-nvgraph        x86_64 1:10.1.168-1.fc30 fedora-nvidia                99 M
 cuda-nvgraph-devel  x86_64 1:10.1.168-1.fc30 fedora-nvidia                12 k
 cuda-nvjpeg         x86_64 1:10.1.168-1.fc30 fedora-nvidia               2.2 M
 cuda-nvjpeg-devel   x86_64 1:10.1.168-1.fc30 fedora-nvidia                15 k
 cuda-nvml-devel     x86_64 1:10.1.168-1.fc30 fedora-nvidia                54 k
 cuda-nvrtc          x86_64 1:10.1.168-1.fc30 fedora-nvidia               6.7 M
 cuda-nvrtc-devel    x86_64 1:10.1.168-1.fc30 fedora-nvidia                14 k
 cuda-nvtx           x86_64 1:10.1.168-1.fc30 fedora-nvidia                31 k
 cuda-nvtx-devel     x86_64 1:10.1.168-1.fc30 fedora-nvidia                40 k
 cuda-samples        x86_64 1:10.1.168-1.fc30 fedora-nvidia                70 M

Yesterday I made a post about the Negativo17 site having issues and that it was believed to be hacked. I emailed Simone and got a reply late last night. That said the following:

Screenshot%20from%202019-06-15%2009-23-45

He’s also commented on the previous reddit post I made and on his site as well. So yeah everythings good! Since the repo packages are not in wordpress, they should be perfectly fine. And if you’re in doubt or extremely paranoid he said he will move the GPG public key of the repositories somewhere else, so people can still check it. The site is back to normal. So you know what that means… I’m going to go ahead and install the packages on my fresh install of Fedora Workstation! Cheers to everyone who helped gather information, helped other ways, and to Simone for fixing it. Have a good one folks!

4 Likes