Skip to main content
  1. Home
  2. Computing
  3. News

SourceForge accused of hijacking Nmap project account

Add as a preferred source on Google

Open source software download site SourceForge has come under criticism again, this time for allegedly taking over the account of the Nmap security auditing software, according to its developer in an email to users.

The news comes days after SourceForge was accused of “hijacking” the account of image editing program, GIMP and bundling it in a downloader with adware. According to a report from Ars Technica, SourceForge has been assuming control of pages that are inactive.

Recommended Videos

“The old Nmap project page is now blank,” said Nmap’s developer Gordon “Fyodor” Lyon, who posted on Seclists after making the discovery. He claims that SourceForge, which is owned by Slashdot Media, has moved all of Nmap’s content to a new page that only SourceForge has control of.

“So far they seem to be providing just the official Nmap files (as long as you don’t click on the fake download buttons) and we haven’t caught them trojaning Nmap the way they did with GIMP,” he said. “But we certainly don’t trust them one bit!”

Lyon added that he will ask Sourceforge to remove the new page and directed users to the official Nmap website for downloading the program.

In response, SourceForge’s senior director of business development Roberto Galoppini stated that it has never modified the Nmap project at all.

“We find no indication that the “nmap” project has ever contained files, delivered any downloads, or had any changes made aside from the automated migration from our old SourceForge platform to the new platform which is powered by Apache Allura,” he wrote in a reply to Ars Technica’s queries.

“At the end of 2011, we established a SourceForge-hosted mirror of the nmap software, using verbatim copies of nmap’s releases, and have continued to keep that mirror up-to-date since.”

Earlier this week, SourceForge also published a blog stating that from now on any third party offers for un-maintained SourceForge projects will be opt-in only. This was in response to bundling ads with GIMP.

The code repository was sharply criticized for its practice when it was revealed that the Windows version of GIMP was archived on a SourceForge mirror site and loaded with third party ads, or adware. Sourceforge had done so as the GIMP page on its site had been left unmaintained with the program now usually downloaded elsewhere.

Jonathan Keane
Jonathan is a freelance technology journalist living in Dublin, Ireland. He's previously written for publications and sites…
I let Radial menu take over my Mac, and I’m never going back
One mouse jiggle, endless shortcuts. My Mac has never felt this fast.
Radial app running on Mac

I have been testing Radial for the past week, and it's quickly become one of those apps I didn’t know how I could live without. It's a radial menu for macOS that puts your shortcuts, scripts, and automations right where your cursor is, so you never have to go hunting through menus to find what you need.

The app just received its 5.0 update, adding AI actions powered by Claude, window layouts, variables, a redesigned settings interface, a new Atmosphere background effect, and a squircle menu shape. I got to try most of these, and here's what I found.

Read more
Android desktop mode made me miss my laptop in record time
I tried writing and publishing from Google’s phone-to-monitor setup, and the future of mobile computing immediately started sweating.
Computer, Electronics, Laptop

Android 17 desktop mode has a very simple pitch. Plug your phone into a monitor, add a keyboard and mouse, and watch the slab in your pocket pretend to be a computer. I wanted to give that pitch a fair shot, so I tried using it for an actual workday instead of a cute demo.

The goal was boring on purpose: write an article, edit it, build the page in WordPress, upload whatever needed uploading, and publish the thing without running back to my laptop like a coward.

Read more
As AI turbocharges digital abuse, UK agencies urge parents to limit who sees kids’ photos online
The National Crime Agency and Internet Watch Foundation are asking parents to tighten privacy settings as AI-generated abuse material rises.
Social Media

Parents who post pictures of their kids online are being told to rethink the habit. The UK's National Crime Agency and the Internet Watch Foundation have issued new guidance urging families to lock down their social media accounts, warning that publicly shared photos are increasingly being pulled and altered by AI tools to create child sexual abuse material.

The two organizations say most parents have no idea this is happening. Criminals no longer need to contact a child directly to generate such material. They can scrape an ordinary photo and run it through widely available nudify apps.

Read more