JDownloader Installer Downloads Replaced with Malware During Website Compromise
Attackers compromised the JDownloader website between May 6-7, 2026, replacing legitimate installer downloads with malware.
The download links for the JDownloader installer were compromised between May 6th and May 7th, 2026, leading to the distribution of malware instead of the legitimate software. The Windows "Download Alternative Installer" and the Linux shell installer were affected during this period.
Users who downloaded the JDownloader installer from the official website during the specified dates are advised to verify the integrity of their downloaded file. The compromise specifically targeted the installer downloads; users who received updates for JDownloader during this time were not affected, nor were users who downloaded macOS, JAR, Flatpak, Winget, or Snap packages.
It is crucial for affected users to immediately scan their systems for malware and remove any suspicious files. JDownloader has since secured its website and download links. Users should ensure they are running the latest, legitimate version of the software and remain vigilant against future supply chain attacks by verifying download sources.