JDownloader Website Compromised to Distribute Malware to Users

JDownloader Website Compromised to Distribute Malware to Users

First seen 9 May 2026, 20:11 UTC News.YcombinatorBleepingcomputerjdownloader.orgSecurityaffairs.CoRescana+5 89% similarity 70.5

Article Content

Browse articles
ThreatCluster

The JDownloader website was hacked between May 6 and May 7, 2026, to serve malicious installers for Windows and Linux users. Attackers replaced legitimate download links with malicious payloads, specifically targeting the 'Download Alternative Installer' and Linux shell installer links. Users who downloaded these installers may have inadvertently installed a Python-based remote access trojan. The JDownloader team confirmed the breach after users reported issues, including malware being flagged by security software. The website was taken offline for investigation, and the malicious links were removed. The main JDownloader JAR file and other installation methods remained unaffected. The developers provided guidance for users to verify legitimate installers and shared hashes for the malicious files. The website was restored on May 9, 2026, after ensuring the integrity of the download links.

Key Points: • JDownloader website hacked to serve malware via compromised download links. • Users who downloaded installers between May 6-7, 2026, are at risk of infection. • Main application files were not affected; only specific download links were compromised.

ThreatCluster AI

Timeline

2026-05-06
Attackers modify download links
Malicious links were introduced on the JDownloader website, targeting Windows and Linux installers.
BleepingComputer
2026-05-07
Users report malware flags
Users began reporting that downloaded installers were flagged as malicious by security software.
News.Ycombinator
2026-05-08
JDownloader confirms breach
The JDownloader team confirmed the website compromise and took it offline for investigation.
jdownloader.org
2026-05-09
Website restored with clean links
After remediation, the JDownloader website was brought back online with verified clean installer links.
jdownloader.org

Community

Browse all →