Arch Linux's AUR Sees More Than 400 Packages Compromised With Malware

phoronix.com

Arch Linux's AUR Sees More Than 400 Packages Compromised With Malware

The Arch Linux User Repository 'AUR' was hit by a large-scale malware campaign this week with more than 400 of these user-supplied packages being compromised.

Since yesterday Arch Linux maintainers have been working to reset/delete all of the malicious content and banning affected accounts. Over 400 packages are believed impacted by this latest malware campaign for Arch Linux’s AUR. Again, to be completely clear, this just is affecting AUR packages and not the official Arch Linux packages.

For the Arch Linux users here you may want to be extra cautious with AUR updates.