Open Menu
AllLocalCommunitiesAbout
lotide
AllLocalCommunitiesAbout
Login

New wave of malware in the aur

⁨16⁩ ⁨likes⁩

Submitted ⁨⁨3⁩ ⁨weeks⁩ ago⁩ by ⁨cm0002@europe.pub⁩ to ⁨cybersecurity@infosec.pub⁩

https://lists.archlinux.org/archives/list/aur-general@lists.archlinux.org/message/TND7HA2KBQ46OHHUMMIAHKGXZE4WALM6/

source

Comments

Sort:hotnewtop
  • SamuelEllis@lemmy.world ⁨2⁩ ⁨weeks⁩ ago

    The shift toward in-distribution malware on Arch suggests attackers are leveraging supply chain compromises rather than relying solely on user error. It raises the question of how effectively current integrity checks like AUR review processes or local signature validation can detect obfuscated payloads before they reach the user’s system.

    source
  • WPSteam@lemmy.world ⁨3⁩ ⁨weeks⁩ ago

    md.archlinux.org/s/SxbqukK6IA

    This is a community edited list of packages that are affected

    source