"What's the betting the hacker's IP address is in a range owned by M$?"
Precisely sod all, one would imagine. Really, what would they have to gain from doing that, given the market share of PCs running mint is miniscule in the grand scheme of things? I know you unwashed lot love to portray them as evil-minded, underhanded ratbags with an over-riding mission to eliminate all things from St Torvalds himself, but that's completely batshit bonkers. Pretty much up there with chemtrails and all those free energy contraptions.
The simple fact here is there was a webserver set up by some halfwit who left it vulnerable, and it got compromised. It happens all the time, all over the place, and there is nothing to suggest that just because it happens to run the all-hallowed Linux that it's inherently immune to such things. I do worry about you lot, because sometimes it feels like you've been conditioned to trust FOSS implicitly without using the normal security and setup procedures. It's software, it can go bad on you, it's always a risk. No matter the vendor.
Macolytes and Linux Zealots have been taking the piss for years. Then the Macolytes felt the sharp sting of vulnerability, and now... now it's the turn of the Zealots. Maybe now you'll see we're all in the same boat?