Arch Linux AUR Hit by Another Wave of Now More Sophisticated Malware Attack
4 hours ago
- #Malware
- #Arch Linux
- #Security
- Arch Linux AUR hit by another wave of sophisticated malware attacks.
- More than 1,500 packages were affected initially, but new malware is now being discovered.
- This latest round uses code obfuscation to conceal intent and is more elaborate.
- Developer a821 reported malware in various packages including Node.js, Plasma 6 applets, Firefox, Aura browser, LibreWolf extensions, and a NeoVim plug-in.
- Affected packages were quickly addressed by a821.
- Nicolas Boichat reported more malware discovered using a local Gemma E2B AI model.
- Some suggest shutting down AUR until security is improved or implementing new safeguards.
- Comments indicate ongoing community concern and discussion.