Well, if they can compromise the host website, they can change the published SHA hash. Similar thing happened to TransmissionBT. For a while, their legit website was serving a hacked binary. Pinned long-term public keys…
Well, if they can compromise the host website, they can change the published SHA hash. Similar thing happened to TransmissionBT. For a while, their legit website was serving a hacked binary. Pinned long-term public keys…