Skip to main content
  1. Home
  2. Computing
  3. News

Want to hack a Linux computer? Just hit backspace 28 times

Add as a preferred source on Google

Contrary to what you might have experienced as Aiden Pierce in Watch Dogs, hacking isn’t easy. In fact, trying to log in to someone else’s computer to compromise their files is practically impossible without the right set of tools. Fortunately (or perhaps unfortunately, depending on who you’re asking) security researchers have discovered a bug in several Linux distributions that makes taking over an entire system as easy as striking the backspace key 28 times.

The report comes from security researchers Hector Marco and Ismael Ripoll, at a Polytechnic University Cybersecurity Group in Valencia, Spain. Upon backspacing exactly 28 times, the pair discovered that all authentication systems can be easily overridden. The bug affects every distribution of Linux using Grub2, the bootloader found in “most Linux systems,” the researchers wrote in their published results.

Recommended Videos

Assuming the system is in fact susceptible to the bug, anyone with the right know-how could access the system’s “Grub rescue shell,” which, with just a few keystrokes, can give them unhindered access to any and all data found on the PC. Of course, with malicious intentions, a person could seamlessly install persistent malware, allowing them to sabotage what’s rightfully yours.

“The number of backspaces hit was the only input controllable by the user to cause different manifestations of the error,” the researchers declared.

Experts agree that this bug is an alarming security oversight for the bootloader developers.

“It is irresponsible for grub to lack decades-old exploit mitigations like stack cookies that could have addressed this issue,” Trail of Bits founder Dan Guido pointed out.

On the bright side, Marco and Ripoll have worked together to come up with a solution for the bug in question. It’s a simple patch compatible with Ubuntu, Red Hat, and Debian distributions. Your best bet would be to install it quickly before letting anyone untrustworthy get ahold of your machine.

Gabe Carey
A freelancer for Digital Trends, Gabe Carey has been covering the intersection of video games and technology since he was 16…
1Password lets Claude inside your accounts without handing over the keys
Claude can now sign in on your behalf while your password stays hidden, though trusting it after login is a separate decision
1Password official

1Password is giving Claude a way into your online accounts without making your passwords part of the bargain. The new 1Password for Claude integration can fill login details while keeping the credentials hidden from Anthropic’s AI agent.

Available now on Mac, the feature kicks in when Claude reaches a sign-in page during a task. Claude requests a saved login, then you approve or deny it. If approved, 1Password submits the credentials through a separate encrypted channel. Passwords and one-time codes never enter Claude’s context or Anthropic’s systems.

Read more
New open-weight AI from China is toppling the best of OpenAI and Claude Fable
Moonshot’s 2.8-trillion-parameter Kimi K3 beats Fable 5 and GPT 5.6 Sol in select benchmarks
Art, Drawing, Plant

China's Moonshot AI has launched Kimi K3, a massive 2.8-trillion-parameter model built for coding, research, reasoning, and visual tasks. Moonshot admits K3 still trails Claude Fable 5 and GPT 5.6 Sol overall. Even so, its benchmark results put it surprisingly close to both, and it finishes ahead in several tests.

How close is Kimi K3 to the best closed models?

Read more
Gemini could finally let you choose how friendly it sounds
Finally, you can stop Gemini from sounding like your HR manager
Google Gemini

Google has spent the past few months making Gemini sound more natural, expressive, and conversational. Now, it appears the company is preparing to give users far more control over how the AI speaks.

Code spotted by Android Authority's APK Insights - the latest beta version of the Google app suggests Gemini may soon allow users to customise its voice across four separate parameters: Energy, Formality, Warmth, and Speed. Instead of choosing from a fixed list of personalities, users could tweak these characteristics to create a voice that better suits their preferences.

Read more