Yup. Somebody hacked the repo and lots of servers have been vulnerable for over year. Looks like It's the Sourcforge repo that was spreading the backdoored Webmin. Here is a handy command to remote reinstall webmin: Code: ssh -t [email protected] "apt install --reinstall webmin -y" or you if you have a network of servers then try this script: Code: #!/bin/bash # Remote install Script for ((i=1;i<=254;i++)); do \ ssh -t [email protected].$i "apt install --reinstall webmin -y"; \ done;