Tech Tips Home
The Best Tech Tips And Daily Deals
Newsletter On The Internet!

WorldStart Tech Tip And Store Search
Email: Password: Login Remember Me
looking for freeware

Like what you see here? Subscribe to the Tech Tips newsletter!   Email: Subscribe

Flaw Makes It Easy To Crack Linux Passwords

Tuesday, December 29th, 2015 by | Filed Under: Security Help

There’s a simple way to hijack a locked-down computer running the Linux operating system. Thanks to the Grub2 bootloader flaw, pressing a certain key on the keyboard 28 times will let an intruder bypass the password.


The flaw is in GRUB, that bootloader that nearly all Linux distributions use to boot up.   According to security researchers Hector Marco & Ismael Ripoll an “incalculable number of devices” are affected by this problem.

Once an attacker gets past the password, they’ll have full access to everything on the PC, just as if they were an admin. The attacker can also copy all of the data or install malware as well as destroy your data.

Using this flaw, the researchers were able to get into the rescue shell of Linux and deploy Malware.

An emergency patch is available here and individual Linux distributions will likely be coming out with patches of their own to solve the problem.

This probably isn’t a huge problem for home users. Linux-based systems like Ubuntu and Mint are found on only a little more than 1% of home systems. But Linux servers are very popular with businesses and, of course, that’s where the majority of your confidential information is stored.

Someone with bad intentions might easily be able to gain access to bank account, credit card or other important personal information if they can get into systems for banks and other businesses.

For many years it was thought that Linux computers were much safer than Windows machines. But like Macs, they were safer because not very many people were interested in hacking them. As their popularity rises, they become better targets.

~ Cynthia

Tags: , ,

One Response to “Flaw Makes It Easy To Crack Linux Passwords”

  1. Ken says:

    It should be noted that the bug is in the Grub2 password protection feature, which is NOT turned on by default in most Linux distros.

Leave a Reply

Like these tips? Get them for FREE in your email!

WorldStart's Tech Tips Newsletter

  • Tech Tips Daily - Become a tech pro! Get the very best tech and computer help sent directly to your email every weekday!

  • Tech Tips Weekly - If you don't want our Tech Tips newsletter every day, then sign up for this weekly newsletter to get the best information of the week. Sent on Fridays.

Other Newsletters

  • WorldStart's Daily Deals - Every week, we send out great deals in our Daily Deals newsletter. Many of these deals are exclusively for our Daily Deals newsletter subscribers and can't be found with our regular specials.

  • Just For Grins - Each issue includes a couple clean jokes, some funny quotes, and a hilarious reader's story. Newsletter is sent five days a week.

Enter Email Address:


Your e-mail address is safe with us!
We only use it to send you the newsletters you request. It is NEVER disclosed to a third party for any reason, ever! Plus, if you decided you don't like our newsletters (don't worry, you'll love them), unsubscribing is fast and easy.

Free Newsletter Signup

Tech Tips Daily

Become a tech pro! Get the very best tech and computer help sent directly to your email every weekday!

Tech Tips Weekly

The week's best in tech and computer help. Get your issue sent to your email every Friday!

WorldStart's Daily Deals

The very best deals on the Internet! Get a new set of incredible sales every day of the week!

Just For Grins

Clean jokes, funny quotes, and hilarious comics. Sent 5 times a week straight to your email.


Love Worldstart? Refer A Friend!

looking for freeware
WorldStart's Premium Membership

Tip Archive