Search
Items tagged with: ArchLinux
Over 400 #ArchLinux packages compromised to push #rootkit, #infostealer
bleepingcomputer.com/news/secu…
#Arch #Linux #FOSS #cybersecurity #malware
Arch Linux maintainers removed malicious commits and banned accounts after malware hit the AUR, with more than 400 compromised packages initially identified. 🛡️
Arch later said all known malicious commits were scrubbed; over 1,500 AUR packages were affected, underscoring the need to verify community-submitted code. 🔍
🔗 fossforce.com/2026/06/arch-say…
#TechNews #ArchLinux #AUR #Arch #Linux #OpenSource #FOSS #Cybersecurity #Malware #Transparency #Security #Privacy #Software #GNU #Tech
Arch Says 'All's Clear' After AUR Malware Incident Affects 1,500 Packages - FOSS Force
Arch says it's scrubbed all known malicious commits, but the 1,500‑plus affected AUR packages are a fresh reminder to "trust but verify."Christine Hall (FOSS Force)
Arch Linux AUR Hit By Another Wave Of Now More Sophisticated Malware Attack phoronix.com/news/Arch-Linux-A…
#archlinux #aur #cybersecurity #opensource
Arch Linux AUR Hit By Another Wave Of Now More Sophisticated Malware Attack
Just a day after Arch Linux developers believed they got their malware AUR incident under control with 1,500+ packages affected by malware, another round of of AUR malware is now being discoveredwww.phoronix.com
Jesus Christ, at this point I think more drastic measures should be taken to lock the AUR down, not this game of whack-a-mole of trying to revert changes to individual packages
Have some sort of trust system, guardrails, mandatory waiting times or account age before becoming maintainer
ANYTHING
phoronix.com/news/Arch-Linux-A…
Arch Linux AUR Hit By Another Wave Of Now More Sophisticated Malware Attack
Just a day after Arch Linux developers believed they got their malware AUR incident under control with 1,500+ packages affected by malware, another round of of AUR malware is now being discoveredwww.phoronix.com
The security situation with the Arch Linux AUR got a lot worse gamingonlinux.com/2026/06/the-…
The security situation with the Arch Linux AUR got a lot worse
Oh dear, the situation with the Arch Linux AUR got a fair bit worse since GamingOnLinux initially covered the malicious packages.Liam Squires-Hand (GamingOnLinux)
Heads up #ArchLinux users!
The "Atomic Arch" supply chain attack (June 9-12) compromised 400-1,500+ AUR packages with an infostealer & eBPF rootkit targeting credentials, browser data, and CI/CD secrets.
Attackers quietly adopted orphaned AUR packages and slipped in malicious PKGBUILDs. The community is actively cleaning up, but now's the time to act.
See also: lists.archlinux.org/archives/l…
The Arch Linux AUR had over 400 packages compromised with malware gamingonlinux.com/2026/06/the-…
The Arch Linux AUR had over 400 packages compromised with malware
Looks like the Arch Linux AUR (Arch User Repository) needs some better security and package checks - as some malicious users compromised a lot of packages.Liam Squires-Hand (GamingOnLinux)
