Around 1,500 AUR Packages Compromised with "Rootkit-Like" Malware

Researchers at Sonatype uncovered a massive supply chain attack against the Arch User Repository (AUR) to harvest credentials and exfiltrate user data by hijacking around 1,500 packages.

This is a companion discussion topic for the original entry at https://www.privacyguides.org/news/2026/06/12/around-1-500-aur-packages-compromised-with-rootkit-like-malware/